VYPR
Unrated severityNVD Advisory· Published Feb 12, 2025· Updated Feb 12, 2025

CVE-2025-26520

CVE-2025-26520

Description

Cacti through 1.2.29 allows SQL injection in the template function in host_templates.php via the graph_template parameter. NOTE: this issue exists because of an incomplete fix for CVE-2024-54146.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.