Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2016-10700

auth_login.php in Cacti before 1.0.0 allows remote authenticated users who use web authentication to bypass intended access restrictions by logging in as a user not in the cacti database, because the guest user is not considered. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-2313.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.7%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
Products affected by CVE-2016-10700
  • Cacti » Cacti » Version: N/A
    cpe:2.3:a:cacti:cacti:-
  • Cacti » Cacti » Version: 0.8
    cpe:2.3:a:cacti:cacti:0.8
  • Cacti » Cacti » Version: 0.8.1
    cpe:2.3:a:cacti:cacti:0.8.1
  • Cacti » Cacti » Version: 0.8.2
    cpe:2.3:a:cacti:cacti:0.8.2
  • Cacti » Cacti » Version: 0.8.2a
    cpe:2.3:a:cacti:cacti:0.8.2a
  • Cacti » Cacti » Version: 0.8.3
    cpe:2.3:a:cacti:cacti:0.8.3
  • Cacti » Cacti » Version: 0.8.3a
    cpe:2.3:a:cacti:cacti:0.8.3a
  • Cacti » Cacti » Version: 0.8.4
    cpe:2.3:a:cacti:cacti:0.8.4
  • Cacti » Cacti » Version: 0.8.5
    cpe:2.3:a:cacti:cacti:0.8.5
  • Cacti » Cacti » Version: 0.8.5a
    cpe:2.3:a:cacti:cacti:0.8.5a
  • Cacti » Cacti » Version: 0.8.6
    cpe:2.3:a:cacti:cacti:0.8.6
  • Cacti » Cacti » Version: 0.8.6a
    cpe:2.3:a:cacti:cacti:0.8.6a
  • Cacti » Cacti » Version: 0.8.6b
    cpe:2.3:a:cacti:cacti:0.8.6b
  • Cacti » Cacti » Version: 0.8.6c
    cpe:2.3:a:cacti:cacti:0.8.6c
  • Cacti » Cacti » Version: 0.8.6d
    cpe:2.3:a:cacti:cacti:0.8.6d
  • Cacti » Cacti » Version: 0.8.6e
    cpe:2.3:a:cacti:cacti:0.8.6e
  • Cacti » Cacti » Version: 0.8.6f
    cpe:2.3:a:cacti:cacti:0.8.6f
  • Cacti » Cacti » Version: 0.8.6g
    cpe:2.3:a:cacti:cacti:0.8.6g
  • Cacti » Cacti » Version: 0.8.6h
    cpe:2.3:a:cacti:cacti:0.8.6h
  • Cacti » Cacti » Version: 0.8.6i
    cpe:2.3:a:cacti:cacti:0.8.6i
  • Cacti » Cacti » Version: 0.8.6j
    cpe:2.3:a:cacti:cacti:0.8.6j
  • Cacti » Cacti » Version: 0.8.6k
    cpe:2.3:a:cacti:cacti:0.8.6k
  • Cacti » Cacti » Version: 0.8.7
    cpe:2.3:a:cacti:cacti:0.8.7
  • Cacti » Cacti » Version: 0.8.7a
    cpe:2.3:a:cacti:cacti:0.8.7a
  • Cacti » Cacti » Version: 0.8.7b
    cpe:2.3:a:cacti:cacti:0.8.7b
  • Cacti » Cacti » Version: 0.8.7c
    cpe:2.3:a:cacti:cacti:0.8.7c
  • Cacti » Cacti » Version: 0.8.7d
    cpe:2.3:a:cacti:cacti:0.8.7d
  • Cacti » Cacti » Version: 0.8.7e
    cpe:2.3:a:cacti:cacti:0.8.7e
  • Cacti » Cacti » Version: 0.8.7f
    cpe:2.3:a:cacti:cacti:0.8.7f
  • Cacti » Cacti » Version: 0.8.7g
    cpe:2.3:a:cacti:cacti:0.8.7g
  • Cacti » Cacti » Version: 0.8.7h
    cpe:2.3:a:cacti:cacti:0.8.7h
  • Cacti » Cacti » Version: 0.8.7i
    cpe:2.3:a:cacti:cacti:0.8.7i
  • Cacti » Cacti » Version: 0.8.8
    cpe:2.3:a:cacti:cacti:0.8.8
  • Cacti » Cacti » Version: 0.8.8a
    cpe:2.3:a:cacti:cacti:0.8.8a
  • Cacti » Cacti » Version: 0.8.8b
    cpe:2.3:a:cacti:cacti:0.8.8b
  • Cacti » Cacti » Version: 0.8.8c
    cpe:2.3:a:cacti:cacti:0.8.8c
  • Cacti » Cacti » Version: 0.8.8d
    cpe:2.3:a:cacti:cacti:0.8.8d
  • Cacti » Cacti » Version: 0.8.8e
    cpe:2.3:a:cacti:cacti:0.8.8e
  • Cacti » Cacti » Version: 0.8.8f
    cpe:2.3:a:cacti:cacti:0.8.8f
  • Cacti » Cacti » Version: 0.8.8g
    cpe:2.3:a:cacti:cacti:0.8.8g
  • Cacti » Cacti » Version: 0.8.8h
    cpe:2.3:a:cacti:cacti:0.8.8h


Products
Pricing
Contact Us

Shodan ® - All rights reserved