This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-05-15 02:04:10 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
db3301be-e01c-11e5-b2bd-002590263bf5 | cacti -- multiple vulnerabilities The Cacti Group, Inc. reports:
Discovery 2016-02-21 Entry 2016-03-02 cacti < 0.8.8g CVE-2015-8377 CVE-2015-8604 CVE-2016-2313 http://www.cacti.net/release_notes_0_8_8g.php http://bugs.cacti.net/view.php?id=2652 http://bugs.cacti.net/view.php?id=2655 http://bugs.cacti.net/view.php?id=2656 http://www.openwall.com/lists/oss-security/2016/02/09/3 |
cd864f1a-8e5a-11ea-b5b4-641c67a117d8 | cacti -- XSS exposure Cacti developer reports:
Discovery 2020-04-16 Entry 2020-05-04 cacti < 1.2.12 https://sourceforge.net/p/cacti/mailman/message/37000502/ https://github.com/Cacti/cacti/blob/release/1.2.12/CHANGELOG CVE-2020-7106 ports/246164 |
db570002-ce06-11e7-804e-c85b763a2f96 | cacti -- multiple vulnerabilities cacti reports:
Discovery 2017-11-01 Entry 2017-11-20 cacti < 1.1.28 CVE-2017-16641 CVE-2017-16660 CVE-2017-16661 CVE-2017-16785 https://sourceforge.net/p/cacti/mailman/message/36122745/ |
59c284f4-8d2e-11ed-9ce0-b42e991fc52e | net-mgmt/cacti is vulnerable to remote command injection cacti team reports:
Discovery 2022-12-05 Entry 2023-01-05 Modified 2023-01-09 cacti < 1.2.23 CVE-2022-46169 https://nvd.nist.gov/vuln/detail/CVE-2022-46169 |
86224a04-26de-11ea-97f2-001a8c5c04b6 | cacti -- multiple vulnerabilities The cacti developers reports:
Discovery 2019-10-12 Entry 2020-01-06 cacti < 1.2.8 https://github.com/Cacti/cacti/releases/tag/release%2F1.2.8 CVE-2019-17357 CVE-2019-17358 ports/242834 |
04104985-d846-11de-84e4-00215af774f0 | cacti -- cross-site scripting issues The cacti development team reports:
Discovery 2009-11-21 Entry 2009-11-23 Modified 2010-05-02 cacti < 0.8.7e4 CVE-2009-4032 http://docs.cacti.net/#cross-site_scripting_fixes |
bb961ff3-b3a4-11e5-8255-5453ed2e2b49 | cacti -- SQL injection vulnerabilities NVD reports:
Discovery 2015-12-05 Entry 2016-01-05 cacti le 0.8.8f_1 CVE-2015-8369 http://bugs.cacti.net/view.php?id=2646 http://svn.cacti.net/viewvc?view=rev&revision=7767 http://seclists.org/fulldisclosure/2015/Dec/8 |
b3b8d491-0fbb-11e3-8c50-1c6f65c11ee6 | cacti -- allow remote attackers to execute arbitrary SQL commands Cacti release reports:
Discovery 2013-08-06 Entry 2013-08-29 cacti < 0.8.8b CVE-2013-1434 CVE-2013-1435 http://www.cacti.net/release_notes_0_8_8b.php |
f08e2c15-ffc9-11e0-b0f3-bcaec565249c | cacti -- Multiple vulnerabilities Cacti Group reports:
Discovery 2011-09-26 Entry 2011-10-26 cacti < 0.8.7h http://www.cacti.net/release_notes_0_8_7h.php |
a0e74731-181b-11e5-a1cf-002590263bf5 | cacti -- multiple security vulnerabilities The Cacti Group, Inc. reports:
Discovery 2014-11-23 Entry 2015-06-21 cacti < 0.8.8c CVE-2013-5588 CVE-2013-5589 CVE-2014-2326 CVE-2014-2327 CVE-2014-2328 CVE-2014-4002 CVE-2014-5025 CVE-2014-5026 ports/198586 http://sourceforge.net/p/cacti/mailman/message/33072838/ http://www.cacti.net/release_notes_0_8_8c.php |
ed18aa92-e4f4-11e9-b6fa-3085a9a95629 | cacti -- Authenticated users may bypass authorization checks The cacti developers reports:
Discovery 2019-09-23 Entry 2019-10-02 cacti < 1.2.7 CVE-2019-16723 https://github.com/Cacti/cacti/releases/tag/release%2F1.2.7 |
5198ef84-4fdc-11df-83fb-0015587e2cc1 | cacti -- SQL injection and command execution vulnerabilities Bonsai information security reports:
The same source also reported a command execution vulnerability. This second issue can be exploited by Cacti users who have the rights to modify device or graph configurations. Discovery 2010-04-21 Entry 2010-04-24 Modified 2013-06-16 cacti le 0.8.7e4 CVE-2010-1431 ports/146021 http://www.bonsai-sec.com/en/research/vulnerabilities/cacti-os-command-injection-0105.php http://www.bonsai-sec.com/en/research/vulnerabilities/cacti-sql-injection-0104.php http://www.debian.org/security/2010/dsa-2039 |
cd2dc126-cfe4-11ea-9172-4c72b94353b5 | Cacti -- multiple vulnerabilities Cacti developers reports:
Discovery 2020-07-15 Entry 2020-07-27 cacti < 1.2.13 https://www.cacti.net/release_notes.php?version=1.2.13 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11022 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11023 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13625 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14295 CVE-2020-11022 CVE-2020-11023 CVE-2020-13625 CVE-2020-14295 |
6167b341-250c-11e6-a6fb-003048f2e514 | cacti -- multiple vulnerabilities The Cacti Group, Inc. reports:
Discovery 2016-04-04 Entry 2016-05-28 cacti < 0.8.8h CVE-2016-3659 http://www.cacti.net/release_notes_0_8_8h.php http://bugs.cacti.net/view.php?id=2673 http://seclists.org/fulldisclosure/2016/Apr/4 http://packetstormsecurity.com/files/136547/Cacti-0.8.8g-SQL-Injection.html |
0bfda05f-2e6f-11e5-a4a5-002590263bf5 | cacti -- Multiple XSS and SQL injection vulnerabilities The Cacti Group, Inc. reports:
Discovery 2015-07-12 Entry 2015-07-20 cacti < 0.8.8e CVE-2015-4634 ports/201702 http://www.cacti.net/release_notes_0_8_8e.php http://seclists.org/oss-sec/2015/q3/150 |
a3929112-181b-11e5-a1cf-002590263bf5 | cacti -- Multiple XSS and SQL injection vulnerabilities The Cacti Group, Inc. reports:
Discovery 2015-06-09 Entry 2015-06-21 cacti < 0.8.8d CVE-2015-4342 ports/200963 http://www.cacti.net/release_notes_0_8_8d.php http://seclists.org/fulldisclosure/2015/Jun/19 |
e02e6a4e-6b26-11df-96b2-0015587e2cc1 | cacti -- multiple vulnerabilities Multiple vulnerabilities have been reported to exist in older version of Cacti. The release notes of Cacti 0.8.7f summarizes the problems as follows:
Discovery 2010-05-24 Entry 2010-06-24 cacti < 0.8.7f http://php-security.org/2010/05/13/mops-2010-023-cacti-graph-viewer-sql-injection-vulnerability/index.html http://www.cacti.net/release_notes_0_8_7f.php http://www.bonsai-sec.com/en/research/vulnerabilities/cacti-os-command-injection-0105.php http://www.vupen.com/english/advisories/2010/1204 |
e1cb9dc9-daa9-44db-adde-e94d900e2f7f | cacti -- Cross Site Scripting issue cacti developers report:
Discovery 2017-10-10 Entry 2017-10-19 cacti < 1.1.26 http://www.securitytracker.com/id/1039569 https://github.com/Cacti/cacti/commit/93f661d8adcfa6618b11522cdab30e97bada33fd https://github.com/Cacti/cacti/issues/1010 CVE-2017-15194 |
e2b564fc-7462-11ea-af63-38d547003487 | cacti -- multiple vulnerabilities The Cacti developers reports:
Discovery 2020-02-04 Entry 2020-04-02 cacti < 1.2.10 https://github.com/Cacti/cacti/releases/tag/release%2F1.2.10 https://nvd.nist.gov/vuln/detail/CVE-2020-8813 https://nvd.nist.gov/vuln/detail/CVE-2020-7106 https://nvd.nist.gov/vuln/detail/CVE-2020-7237 CVE-2020-8813 CVE-2020-7106 CVE-2020-7237 ports/245198 |