cacti Latest Vulnerabilities
Latest vulnerabilities published by cacti
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
SQL Injection Vulnerability in Cacti by Cacti Group
CVE-2025-26520CactiCacti9.8CRITICALSQL Injection Vulnerability in Cacti Performance Management Framework
CVE-2025-24368CactiCacti6.9MEDIUMRemote Code Execution Vulnerability in Cacti by Cacti Group
CVE-2025-24367CactiCacti8.7HIGHCommand Execution Vulnerability in Cacti Performance Management Software
CVE-2025-22604CactiCactiπΎEPSS 36%π°7.2HIGHSQL Injection Vulnerability in Cacti Performance Management Framework
CVE-2024-54145CactiCacti8.8HIGHSQL Injection Vulnerability in Cacti Performance Management Framework
CVE-2024-54146CactiCacti8.8HIGHSecurity Configuration Vulnerability in Cacti Performance Management Framework
CVE-2024-45598CactiCacti4.9MEDIUMStored Cross-site Scripting (XSS) when creating external links in Cacti
CVE-2024-43362CactiCacti5.4MEDIUMCacti Log Poisoning Vulnerability Affects All Users, Upgrade to 1.2.28 Immediately
CVE-2024-43363CactiCactiEPSS 39%7.2HIGHStored Cross-site Scripting (XSS) when creating external links in Cacti
CVE-2024-43364CactiCacti8.2HIGHCacti Opensource Framework Vulnerable to Stored XSS Attacks
CVE-2024-43365CactiCacti8.2HIGHCacti vulnerability in `compat_password_verify` function
CVE-2024-34340CactiCacti9.1CRITICALCacti Patches Cross-Site Scripting Vulnerability
CVE-2024-31443CactiCacti5.7MEDIUMCacti Patches Cross-Site Scripting Vulnerability
CVE-2024-31444CactiCacti4.6MEDIUMCacti vulnerable to SQL injection and privilege escalation
CVE-2024-31445CactiCacti8.8HIGHCacti Patches SQL Injection Vulnerability in Version 1.2.27
CVE-2024-31458CactiCacti4.6MEDIUMCacti Vulnerable to File Inclusion and SQL Injection Attacks
CVE-2024-31459CactiCacti8.1HIGHCacti Vulnerability Allows SQL Injection and Further Attacks
CVE-2024-31460CactiCacti6.5MEDIUMCacti XSS vulnerability in display_settings
CVE-2024-30268CactiCacti6.1MEDIUMCacti Fixes Cross-Site Scripting Vulnerability
CVE-2024-29894CactiCacti5.4MEDIUMCacti vulnerable to command injection attack through URL manipulation
CVE-2024-29895CactiCactiππΎπ‘EPSS 92%π°10CRITICALCacti Vulnerable to Stored Cross-Site Scripting Prior to Version 1.2.27
CVE-2024-27082CactiCacti5.4MEDIUMCacti vulnerable to arbitrary file write exploit
CVE-2024-25641CactiCactiπΎπ‘EPSS 84%9.1CRITICALCacti SQL Injection vulnerability
CVE-2023-49085CactiCactiπΎπ‘EPSS 92%8.8HIGHCacti has incomplete fix for CVE-2023-39515
CVE-2023-49088CactiCacti6.1MEDIUM