vulnerability

SUSE: CVE-2015-8604: SUSE Linux Security Advisory

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:L/Au:S/C:P/I:P/A:P)	Feb 12, 2016	Feb 27, 2016	Feb 4, 2022

Severity

CVSS

(AV:N/AC:L/Au:S/C:P/I:P/A:P)

Published

Feb 12, 2016

Added

Feb 27, 2016

Modified

Feb 4, 2022

Description

SQL injection vulnerability in the host_new_graphs function in graphs_new.php in Cacti 0.8.8f and earlier allows remote authenticated users to execute arbitrary SQL commands via the cg_g parameter in a save action.

Solutions

suse-upgrade-cactisuse-upgrade-cacti-doc

References

DEBIAN-DLA-386-1
DEBIAN-DSA-3494
SECTRACK-1034573
GENTOO-GLSA-201607-05
NVD-CVE-2015-8604

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report