Multiple SQL injection vulnerabilities in (1) api_poller.php and (2) utility.php in Cacti before 0.8.8b allow remote attackers to execute arbitrary SQL commands via unspecified vectors.
{ "binaries": [ { "binary_name": "cacti", "binary_version": "0.8.8b+dfsg-5" } ], "availability": "No subscription required", "ubuntu_priority": "medium" }