Unrated severityNVD Advisory· Published Dec 15, 2015· Updated Jun 17, 2026
CVE-2015-8377
CVE-2015-8377
Description
SQL injection vulnerability in the host_new_graphs_save function in graphs_new.php in Cacti 0.8.8f and earlier allows remote authenticated users to execute arbitrary SQL commands via crafted serialized data in the selected_graphs_array parameter in a save action.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:cacti:cacti:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:cacti:cacti:*:*:*:*:*:*:*:*range: <=0.8.8f
- (no CPE)range: <=0.8.8f
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.