oss-sec mailing list archives
CVE Request: cacti: SQL injection vulnerability in graphs_new.php
From: Salvatore Bonaccorso <carnil () debian org>
Date: Mon, 4 Jan 2016 22:30:05 +0100
Hi, Another SQL injection vulnerability via graphs_new.php in cacti was found, reported to the bug http://bugs.cacti.net/view.php?id=2652 . No upstream commit to fix the issue is available yet. This seems different to CVE-2015-8377, which was assigned for http://seclists.org/fulldisclosure/2015/Dec/att-57/cacti_sqli%281%29.txt Can you assign a CVE for this issue? Regards, Salvatore
Current thread:
- CVE Request: cacti: SQL injection vulnerability in graphs_new.php Salvatore Bonaccorso (Jan 04)
- Re: CVE Request: cacti: SQL injection vulnerability in graphs_new.php cve-assign (Jan 04)
- Re: Re: CVE Request: cacti: SQL injection vulnerability in graphs_new.php Andreas Stieger (Jan 05)
- Re: Re: CVE Request: cacti: SQL injection vulnerability in graphs_new.php Salvatore Bonaccorso (Jan 05)
- Re: Re: CVE Request: cacti: SQL injection vulnerability in graphs_new.php Andreas Stieger (Jan 05)
- Re: Re: CVE Request: cacti: SQL injection vulnerability in graphs_new.php Andreas Stieger (Jan 05)
- Re: CVE Request: cacti: SQL injection vulnerability in graphs_new.php cve-assign (Jan 04)