VYPR
Vendor

Cacti (software)

Cacti is an open-source, web-based network monitoring, performance, fault, and configuration management framework that functions as a front end for the RRDtool time-series data logging tool. Created by Ian Berry in 2001, it is written in PHP with a MySQL or MariaDB backend and released under the GNU General Public License.

Products
2
CVEs
171
Across products
172
Status
Private

Products

2

Recent CVEs

171
View all 171 CVEs →
  • CVE-2024-29895CriMay 14, 2024
    risk 0.65cvss 10.0epss 0.94

    Cacti provides an operational monitoring and fault management framework. A command injection vulnerability on the 1.3.x DEV branch allows any unauthenticated user to execute arbitrary command on the server when `register_argc_argv` option of PHP is `On`. In `cmd_realtime.php`…

  • CVE-2017-12065CriAug 1, 2017
    risk 0.64cvss 9.8epss 0.03

    spikekill.php in Cacti before 1.1.16 might allow remote attackers to execute arbitrary code via the avgnan, outlier-start, or outlier-end parameter.

  • CVE-2014-4000HigNov 15, 2017
    risk 0.57cvss 8.8epss 0.02

    Cacti before 1.0.0 allows remote authenticated users to conduct PHP object injection attacks and execute arbitrary PHP code via a crafted serialized object, related to calling unserialize(stripslashes()).

  • CVE-2017-1000031HigJul 17, 2017
    risk 0.57cvss 8.8epss 0.01

    SQL injection vulnerability in graph_templates_inputs.php in Cacti 0.8.8b allows remote attackers to execute arbitrary SQL commands via the graph_template_input_id and graph_template_id parameters.

  • CVE-2016-2313HigApr 13, 2016
    risk 0.57cvss 8.8epss 0.03

    auth_login.php in Cacti before 0.8.8g allows remote authenticated users who use web authentication to bypass intended access restrictions by logging in as a user not in the cacti database.

  • CVE-2016-3172HigApr 12, 2016
    risk 0.57cvss 8.8epss 0.03

    SQL injection vulnerability in tree.php in Cacti 0.8.8g and earlier allows remote authenticated users to execute arbitrary SQL commands via the parent_id parameter in an item_edit action.

  • CVE-2015-8604HigApr 11, 2016
    risk 0.57cvss 8.8epss 0.02

    SQL injection vulnerability in the host_new_graphs function in graphs_new.php in Cacti 0.8.8f and earlier allows remote authenticated users to execute arbitrary SQL commands via the cg_g parameter in a save action.

  • CVE-2016-3659HigApr 11, 2016
    risk 0.57cvss 8.8epss 0.02

    SQL injection vulnerability in graph_view.php in Cacti 0.8.8.g allows remote authenticated users to execute arbitrary SQL commands via the host_group_data parameter.

  • CVE-2016-10700HigNov 24, 2017
    risk 0.50cvss 8.8epss 0.02

    auth_login.php in Cacti before 1.0.0 allows remote authenticated users who use web authentication to bypass intended access restrictions by logging in as a user not in the cacti database, because the guest user is not considered. NOTE: this vulnerability exists because of an…

  • CVE-2017-16660HigNov 8, 2017
    risk 0.47cvss 7.2epss 0.04

    Cacti 1.1.27 allows remote authenticated administrators to conduct Remote Code Execution attacks by placing the Log Path under the web root, and then making a remote_agent.php request containing PHP code in a Client-ip header.

  • CVE-2017-16641HigNov 7, 2017
    risk 0.47cvss 7.2epss 0.03

    lib/rrd.php in Cacti 1.1.27 allows remote authenticated administrators to execute arbitrary OS commands via the path_rrdtool parameter in an action=save request to settings.php.

  • CVE-2017-16785MedNov 10, 2017
    risk 0.40cvss 6.1epss 0.01

    Cacti 1.1.27 has reflected XSS via the PATH_INFO to host.php.

  • CVE-2017-15194MedOct 11, 2017
    risk 0.40cvss 6.1epss 0.01

    include/global_session.php in Cacti 1.1.25 has XSS related to (1) the URI or (2) the refresh page.

  • CVE-2017-12927MedAug 18, 2017
    risk 0.40cvss 6.1epss 0.01

    A cross-site scripting vulnerability exists in Cacti 1.1.17 in the method parameter in spikekill.php.

  • CVE-2017-1000032MedJul 17, 2017
    risk 0.40cvss 6.1epss 0.01

    Cross-Site scripting (XSS) vulnerabilities in Cacti 0.8.8b allow remote attackers to inject arbitrary web script or HTML via the parent_id parameter to tree.php and drp_action parameter to data_sources.php.

  • CVE-2025-45160MedJan 29, 2026
    risk 0.35cvss 5.4epss 0.00

    A HTML injection vulnerability exists in the file upload functionality of Cacti <= 1.2.29. When a file with an invalid format is uploaded, the application reflects the submitted filename back into an error popup without proper sanitization. As a result, attackers can inject…

  • CVE-2018-10061MedApr 12, 2018
    risk 0.35cvss 5.4epss 0.01

    Cacti before 1.1.37 has XSS because it makes certain htmlspecialchars calls without the ENT_QUOTES flag (these calls occur when the html_escape function in lib/html.php is not used).

  • CVE-2018-10060MedApr 12, 2018
    risk 0.35cvss 5.4epss 0.01

    Cacti before 1.1.37 has XSS because it does not properly reject unintended characters, related to use of the sanitize_uri function in lib/functions.php.

  • CVE-2018-10059MedApr 12, 2018
    risk 0.35cvss 5.4epss 0.01

    Cacti before 1.1.37 has XSS because the get_current_page function in lib/functions.php relies on $_SERVER['PHP_SELF'] instead of $_SERVER['SCRIPT_NAME'] to determine a page name.

  • CVE-2017-12978MedAug 21, 2017
    risk 0.35cvss 5.4epss 0.01

    lib/html.php in Cacti before 1.1.18 has XSS via the title field of an external link added by an authenticated user.