VDB
GCVE-110-MAGEIA-2016-178
GCVE-110-MAGEIA-2016-178
Advisory Published
Updated cacti package fixes security vulnerability:
SQL injection vulnerability in tree.php in Cacti 0.8.8g and earlier allows
remote authenticated users to execute arbitrary SQL commands via the parent_id
parameter in an item_edit action (CVE-2016-3172).
SQL injection vulnerability in graph_view.php in Cacti 0.8.8.g and earlier
allows remote authenticated users to execute arbitrary SQL commands via the
host_group_data parameter (CVE-2016-3659).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | cacti | 0 (affected), 0.8.8f-1.5.mga5 (unaffected) | — |
Aliases
Transitive aliases
CVE-2014-5026GHSA-6mcp-hm3f-5j68CVE-2013-5589CVE-2015-8369GHSA-8975-c5xr-xccwGHSA-j268-9gfj-xh5mVVD-MAGEIA-2016-68GSD-2014-5261GHSA-gfqc-77c8-mw92CVE-2013-5588CVE-2014-2326CNVD-2015-03939CNVD-2016-02215CVE-2015-4342CVE-2015-8377CVE-2015-2665CVE-2016-2313GHSA-jhrc-rcvv-9rpcCVE-2015-4454GHSA-h375-wfx8-8qcxCVE-2014-2327CVE-2014-2708GHSA-fwg6-8jf8-3wh3OPENSUSE-SU-2024:10084-1GSD-2016-3172CVE-2014-4002VVD-MAGEIA-2014-302GHSA-w6fq-c949-4cc3GHSA-fc89-v9fm-mhccGSD-2015-4454CVE-2014-2709GHSA-5r75-j6jg-x3cpVVD-MAGEIA-2014-403CVE-2014-5261GHSA-v774-w7w7-mvrgVVD-MAGEIA-2016-25GHSA-gpvp-6xwc-m44gGHSA-qw2x-4966-p858CNVD-2015-03937GSD-2015-2665CVE-2015-4634GHSA-3pph-g5w6-c57wGSD-2014-5262GHSA-g258-xc2f-gxcjCVE-2014-5025GHSA-33xj-hh55-6653GHSA-4frf-q9p9-gg69CVE-2014-2328GHSA-f4fj-5r86-7vv3GHSA-v7rc-xv6x-99vcBDU:2016-01051CVE-2014-5262GHSA-pf2x-7333-7fw9CVE-2015-8604CNVD-2016-02028VVD-MAGEIA-2015-306GHSA-fwvm-rfh8-pm9xCNVD-2015-03938GHSA-hqj3-mvg5-35g5GSD-2016-3659
Browse GCVE Records
71,925 records in the GCVE database · Updated July 13, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.