cacti: SQL Injection and Location header injection from cdef id (CVE-2015-4342)
Bug:
Unspecified SQL Injection and Location header injection vulnerability has been reported and fixed in Cacti.
Fix:
Cacti 0.8.8d
Reference:
https://bugzilla.redhat.com/show\_bug.cgi?id=CVE-2015-4342
(from redmine: issue id 4356, created on 2015-06-15, closed on 2015-06-16)
- Relations:
- child #4357 (closed)
- child #4358 (closed)
- child #4359 (closed)
- child #4360 (closed)