CVE-2025-26520 | Cacti up to 1.2.29 host_templates.php template graph_template sql injection

Posted by Angelo Barbosa | Feb 12, 2025 | CVE

A vulnerability has been found in Cacti up to 1.2.29 and classified as critical. This vulnerability affects the function template of the file host_templates.php. The manipulation of the argument graph_template leads to sql injection.

This vulnerability was named CVE-2025-26520. The attack can be initiated remotely. There is no exploit available.

CVE-2025-26520 | Cacti up to 1.2.29 host_templates.php template graph_template sql injection

Related Posts

CVE-2024-41780 | IBM Jazz Foundation 7.0.2/7.0.3/7.1.0 exposure of private personal information to an unauthorized actor

CVE-2024-53687 | Linux Kernel up to 6.6.66/6.12.5 kernel/smp.c kfence_protect_page memory corruption

CVE-2024-40782 | Apple macOS Web use after free

CVE-2024-23218 | Apple macOS RSA PKCS Private Key channel accessible