CVE-2024-31445 | Cacti up to 1.2.26 api_automation.php automation_get_new_graphs_sql sql injection

Posted by Angelo Barbosa | May 13, 2024 | CVE

A vulnerability has been found in Cacti up to 1.2.26 and classified as critical. This vulnerability affects the function automation_get_new_graphs_sql of the file api_automation.php. The manipulation leads to sql injection.

This vulnerability was named CVE-2024-31445. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-31445 | Cacti up to 1.2.26 api_automation.php automation_get_new_graphs_sql sql injection

Related Posts

CVE-2023-24676 | Processwire 3.0.210 New Module Installation download_zip_url Privilege Escalation

CVE-2024-36994 | Splunk Enterprise/Cloud Platform Web Bulletin Message cross site scripting (SVD-2024-0714)

CVE-2024-37246 | Jethin Gallery Slideshow Plugin up to 1.4.1 on WordPress cross site scripting

CVE-2024-28233 | JupyterHub up to 4.0.x cross site scripting