CVE-2002-1477

EPSS 2.7%

cacti - arbitrary code execution

發布日:2003/4/22修改日:2026/5/27

也稱為:DEBIAN-CVE-2002-1477

描述

graphs.php in Cacti before 0.6.8 allows remote authenticated Cacti administrators to execute arbitrary commands via shell metacharacters in the title during edit mode.

受影響套件(2)

Debian/cactifrom 0, < 0.6.8a-2
Debian/cactifrom 0, < 0.6.7-2.1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2002-1477