FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-25 11:22:49 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
ed18aa92-e4f4-11e9-b6fa-3085a9a95629	cacti -- Authenticated users may bypass authorization checks The cacti developers reports: In Cacti through 1.2.6, authenticated users may bypass authorization checks (for viewing a graph) via a direct graph_json.php request with a modified local_graph_id parameter. Discovery 2019-09-23 Entry 2019-10-02 cacti < 1.2.7 CVE-2019-16723 https://github.com/Cacti/cacti/releases/tag/release%2F1.2.7

VuXML ID

Description

ed18aa92-e4f4-11e9-b6fa-3085a9a95629

cacti -- Authenticated users may bypass authorization checks

The cacti developers reports:

In Cacti through 1.2.6, authenticated users may bypass authorization checks (for viewing a graph) via a direct graph_json.php request with a modified local_graph_id parameter.

Discovery 2019-09-23
Entry 2019-10-02
cacti

< 1.2.7

CVE-2019-16723
https://github.com/Cacti/cacti/releases/tag/release%2F1.2.7