Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2010-2092
HistoryMay 27, 2010 - 10:30 p.m.

Sql injection

2010-05-2722:30:00
PRIOn knowledge base
www.prio-n.com
2

8.7 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

59.9%

JSON

SQL injection vulnerability in graph.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via a crafted rra_id parameter in a GET request in conjunction with a valid rra_id value in a POST request or a cookie, which causes the POST or cookie value to bypass the validation routine, but inserts the $_GET value into the resulting query.

CPENameOperatorVersion
cactieq0.5
cactieq0.8.6107
cactieq0.8.6100
cactieq0.6.3
cactieq0.8.7
cactieq0.8.597
cactieq0.8.3
cactieq0.6.8
cactieq0.8.2
cactieq0.8.5
Rows per page:
1-10 of 371

Related

nessus 3
ubuntucve 1
cve 1
openvas 9
securityvulns 2
nvd 1
debiancve 1
cvelist 1
veracode 1
debian 1
osv 1
gentoo 1
nessus
nessus
Debian DSA-2060-1 : cacti - insufficient input sanitization
2010-06-14 00:00:00
Cacti < 0.8.7f Multiple Input Validation Vulnerabilities
2010-05-04 00:00:00
GLSA-201401-20 : Cacti: Multiple vulnerabilities
2014-01-22 00:00:00
ubuntucve
ubuntucve
CVE-2010-2092
2010-05-27 00:00:00
cve
cve
CVE-2010-2092
2010-05-27 22:30:01
openvas
openvas
Mandriva Update for flashplayer MDVA-2010:117 (flashplayer)
2010-04-16 00:00:00
Debian: Security Advisory (DSA-2060-1)
2010-07-06 00:00:00
Cacti 'rra_id' Parameter SQL Injection Vulnerability
2010-05-14 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2060-1] New cacti packages fix SQL injection
2010-06-17 00:00:00
Web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2010-06-17 00:00:00
nvd
nvd
CVE-2010-2092
2010-05-27 22:30:01
debiancve
debiancve
CVE-2010-2092
2010-05-27 22:30:01
cvelist
cvelist
CVE-2010-2092
2010-05-27 22:00:00
veracode
veracode
SQL Injection
2020-04-10 00:46:59
debian
debian
[SECURITY] [DSA 2060-1] New cacti packages fix SQL injection
2010-06-13 15:27:18
osv
osv
cacti - SQL injection
2010-06-13 00:00:00
gentoo
gentoo
Cacti: Multiple vulnerabilities
2014-01-21 00:00:00

8.7 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

59.9%

JSON
Related for PRION:CVE-2010-2092
nessus3ubuntucve1cve1openvas9securityvulns2nvd1debiancve1cvelist1veracode1debian1osv1gentoo1