CVE-2024-31458 | Cacti up to 1.2.26 graph_template_inputs.php form_save sql injection

Posted by Angelo Barbosa | May 13, 2024 | CVE

A vulnerability was found in Cacti up to 1.2.26. It has been classified as critical. Affected is the function form_save in the library lib/html_form_templates.php of the file graph_template_inputs.php. The manipulation leads to sql injection.

This vulnerability is traded as CVE-2024-31458. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-31458 | Cacti up to 1.2.26 graph_template_inputs.php form_save sql injection

Related Posts

CVE-2024-48949 | Elliptic Package up to 6.5.5 on Node.js index.js verify Privilege Escalation

CVE-2024-34548 | Themesgrove WidgetKit Plugin up to 2.4.8 on WordPress cross site scripting

CVE-2024-4730 | Campcodes Legal Case Management System 1.0 /admin/judge judge_name cross site scripting

CVE-2024-34708 | Directus up to 10.10.x API alias text information disclosure