CVE-2015-4634
EPSS 0.41%cacti - security update
Published: 8/11/2015Modified: 5/27/2026
Description
SQL injection vulnerability in graphs.php in Cacti before 0.8.8e allows remote attackers to execute arbitrary SQL commands via the local_graph_id parameter.
Affected packages (3)
- Debian/cactifrom 0, < 0.8.8e+ds1-1
- Debian/cactifrom 0, < 0.8.7g-1+squeeze7
- Debian/cactifrom 0, < 0.8.8a+dfsg-5+deb7u6