CVE-2002-1477 | SynScan

Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2002-1477

graphs.php in Cacti before 0.6.8 allows remote authenticated Cacti administrators to execute arbitrary commands via shell metacharacters in the title during edit mode.

Published: Apr 22, 2003
Updated: Apr 13, 2023
CVE: CVE-2002-1477
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
the_cacti_group / cacti	0.5	0.5.x
the_cacti_group / cacti	0.6.7	0.6.7.x
the_cacti_group / cacti	0.6.4	0.6.4.x
the_cacti_group / cacti	0.6.1	0.6.1.x
the_cacti_group / cacti	0.6	0.6.x
the_cacti_group / cacti	0.6.6	0.6.6.x
the_cacti_group / cacti	0.6.5	0.6.5.x
the_cacti_group / cacti	0.6.3	0.6.3.x
the_cacti_group / cacti	0.6.8	0.6.8.x
the_cacti_group / cacti	0.6.2	0.6.2.x