Cross-site request forgery (CSRF) vulnerability in logout.php in Cacti before 0.8.7i allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
CVSS Score
4.3
EPSS Score
0.005
Published
2012-10-25
SQL injection vulnerability in auth_login.php in Cacti before 0.8.7h allows remote attackers to execute arbitrary SQL commands via the login_username parameter.
CVSS Score
7.5
EPSS Score
0.016
Published
2011-12-15
Page 9