FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

cacti -- ADOdb "server.php" Insecure Test Script Security Issue

Affected packages
cacti < 0.8.6h

Details

VuXML ID 79c1154d-d5a5-11da-8098-00123ffe8333
Discovery 2006-01-09
Entry 2006-04-27

Secunia reports:

Cacti have a security issue, which can be exploited by malicious people to execute arbitrary SQL code and potentially compromise a vulnerable system.

The problem is caused due to the presence of the insecure "server.php" test script.

[source]

References

URL http://secunia.com/advisories/17418/
URL http://secunia.com/advisories/18276/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.