CVE 2011-4824
SQL injection vulnerability in auth_login.php in Cacti before 0.8.7h allows remote attackers to execute arbitrary SQL commands via the login_username parameter.
Related bugs and status
CVE-2011-4824 (Candidate) is related to these bugs:
Bug #702869: ping latency graphs not working
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 702869 | ping latency graphs not working | cacti (Ubuntu) | Low | Fix Released | ||
| 702869 | ping latency graphs not working | Cacti | Unknown | Fix Released | ||
| 702869 | ping latency graphs not working | cacti (Debian) | Unknown | Fix Released | ||
Bug #906773: CVE-2011-4824 SQL injection issue in auth_login.php
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 906773 | CVE-2011-4824 SQL injection issue in auth_login.php | cacti (Ubuntu) | Medium | Fix Released | ||
| 906773 | CVE-2011-4824 SQL injection issue in auth_login.php | cacti (Debian) | Unknown | Fix Released | ||
| 906773 | CVE-2011-4824 SQL injection issue in auth_login.php | cacti (Ubuntu Lucid) | Medium | Fix Released | ||
| 906773 | CVE-2011-4824 SQL injection issue in auth_login.php | cacti (Ubuntu Maverick) | Medium | Fix Released | ||
| 906773 | CVE-2011-4824 SQL injection issue in auth_login.php | cacti (Ubuntu Natty) | Medium | Fix Released | ||
| 906773 | CVE-2011-4824 SQL injection issue in auth_login.php | cacti (Ubuntu Precise) | Medium | Fix Released | ||
| 906773 | CVE-2011-4824 SQL injection issue in auth_login.php | cacti (Ubuntu Oneiric) | Medium | Fix Released | ||
See the 
CVE page on Mitre.org
for more details.
