CVE-2010-1431
published 2010-05-04CVE-2010-1431: SQL injection vulnerability in templates_export.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via the…
PriorityP352high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
3.80%
88.7th percentile
SQL injection vulnerability in templates_export.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via the export_item_id parameter.
Affected
42 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cacti | cacti | <= 0.8.7e | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
| cacti | cacti | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5HIGH
vendor_redhat7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
cacti: SQL injection vulnerability (BONSAI-2010-0104)
vendor_redhat·2010-04-21·CVSS 7.5
CVE-2010-1431 [HIGH] cacti: SQL injection vulnerability (BONSAI-2010-0104)
cacti: SQL injection vulnerability (BONSAI-2010-0104)
SQL injection vulnerability in templates_export.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via the export_item_id parameter.
Debian
CVE-2010-1431: cacti - SQL injection vulnerability in templates_export.php in Cacti 0.8.7e and earlier ...
vendor_debian·2010·CVSS 7.5
CVE-2010-1431 [HIGH] CVE-2010-1431: cacti - SQL injection vulnerability in templates_export.php in Cacti 0.8.7e and earlier ...
SQL injection vulnerability in templates_export.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via the export_item_id parameter.
Scope: local
bookworm: resolved (fixed in 0.8.7e-3)
bullseye: resolved (fixed in 0.8.7e-3)
forky: resolved (fixed in 0.8.7e-3)
sid: resolved (fixed in 0.8.7e-3)
trixie: resolved (fixed in 0.8.7e-3)
GHSA
GHSA-33f8-qg6q-959p: SQL injection vulnerability in templates_export
ghsa_unreviewed·2022-05-02
CVE-2010-1431 [HIGH] CWE-89 GHSA-33f8-qg6q-959p: SQL injection vulnerability in templates_export
SQL injection vulnerability in templates_export.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via the export_item_id parameter.
OSV
CVE-2010-1431: SQL injection vulnerability in templates_export
osv·2010-05-04·CVSS 7.5
CVE-2010-1431 [HIGH] CVE-2010-1431: SQL injection vulnerability in templates_export
SQL injection vulnerability in templates_export.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via the export_item_id parameter.
No detection rules found.
Bugzilla
CVE-2010-1644 CVE-2010-1645 CVE-2010-2092 Cacti v0.8.7f - three security fixes
bugzilla·2010-05-24·CVSS 4.3
CVE-2010-1644 [MEDIUM] CVE-2010-1644 CVE-2010-1645 CVE-2010-2092 Cacti v0.8.7f - three security fixes
CVE-2010-1644 CVE-2010-1645 CVE-2010-2092 Cacti v0.8.7f - three security fixes
Cacti upstream has released:
[1] http://www.cacti.net/release_notes_0_8_7f.php
latest v0.8.7 version, addressing three security flaws:
[A], MOPS-2010-023: Cacti Graph Viewer SQL Injection Vulnerability
[2] http://php-security.org/2010/05/13/mops-2010-023-cacti-graph-viewer-sql-injection-vulnerability/index.html
[3] http://www.vupen.com/english/advisories/2010/1204
Credit: The vulnerability was discovered by Stefan Esser as part
of the SQL Injection Marathon.
Upstream changeset:
[4] http://svn.cacti.net/viewvc?view=rev&revision=5920
[B], Cross-site scripting issues reported by VUPEN Security
(http://www.vupen.com)
[5] http://www.vupen.com/english/advisories/2010/1203
Credit: Vulnerabilities reported by Moham
Bugzilla
CVE-2010-1431 cacti: SQL injection vulnerability (BONSAI-2010-0104)
bugzilla·2010-04-23·CVSS 7.5
CVE-2010-1431 [HIGH] CVE-2010-1431 cacti: SQL injection vulnerability (BONSAI-2010-0104)
CVE-2010-1431 cacti: SQL injection vulnerability (BONSAI-2010-0104)
An SQL injection vulnerability was reported in cacti [1]. Input passed via the 'export_item_id' parameter to the templates_export.php script is not properly sanitized prior to being used in an SQL query. Upstream has provided a patch to correct this issue [2].
[1] http://seclists.org/fulldisclosure/2010/Apr/272
[2] http://www.cacti.net/downloads/patches/0.8.7e/sql_injection_template_export.patch
Discussion:
Created cacti tracking bugs for this issue
Affects: fedora-all [bug 585402]
---
bug 585207 has addressed this in Fedora and EPEL.
---
This has been assigned CVE-2010-1431.
---
Direct link to BONSAI-2010-0104 advisory:
http://www.bonsai-sec.com/en/research/vulnerabilities/cacti-sql-injection-0104.php
---
Th
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=578909http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.htmlhttp://seclists.org/fulldisclosure/2010/Apr/272http://secunia.com/advisories/39568http://secunia.com/advisories/39572http://secunia.com/advisories/41041http://www.cacti.net/downloads/patches/0.8.7e/sql_injection_template_export.patchhttp://www.debian.org/security/2010/dsa-2039http://www.exploit-db.com/sploits/Bonsai-SQL_Injection_in_Cacti.pdfhttp://www.mandriva.com/security/advisories?name=MDVSA-2010:092http://www.securityfocus.com/bid/39653http://www.vupen.com/english/advisories/2010/0986http://www.vupen.com/english/advisories/2010/1107http://www.vupen.com/english/advisories/2010/2132https://rhn.redhat.com/errata/RHSA-2010-0635.htmlhttp://bugs.debian.org/cgi-bin/bugreport.cgi?bug=578909http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.htmlhttp://seclists.org/fulldisclosure/2010/Apr/272http://secunia.com/advisories/39568http://secunia.com/advisories/39572http://secunia.com/advisories/41041http://www.cacti.net/downloads/patches/0.8.7e/sql_injection_template_export.patchhttp://www.debian.org/security/2010/dsa-2039http://www.exploit-db.com/sploits/Bonsai-SQL_Injection_in_Cacti.pdfhttp://www.mandriva.com/security/advisories?name=MDVSA-2010:092http://www.securityfocus.com/bid/39653http://www.vupen.com/english/advisories/2010/0986http://www.vupen.com/english/advisories/2010/1107http://www.vupen.com/english/advisories/2010/2132https://rhn.redhat.com/errata/RHSA-2010-0635.html
2010-05-04
Published