Unrated severityNVD Advisory· Published May 22, 2015· Updated Jun 17, 2026
CVE-2015-0916
CVE-2015-0916
Description
SQL injection vulnerability in graph.php in Cacti before 0.8.6f allows remote authenticated users to execute arbitrary SQL commands via the local_graph_id parameter, a different vulnerability than CVE-2007-6035.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:cacti:cacti:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:cacti:cacti:*:*:*:*:*:*:*:*range: <=0.8.6e
- (no CPE)range: <0.8.6f
Patches
Vulnerability mechanics
References
3- www.cacti.net/release_notes_0_8_6f.phpnvdPatchVendor Advisory
- jvn.jp/en/jp/JVN18957556/index.htmlnvdVendor Advisory
- jvndb.jvn.jp/jvndb/JVNDB-2015-000064nvdVendor Advisory
News mentions
0No linked articles in our index yet.