| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-66399 | SNMP Command Injection leads to RCE in Cacti | Cacti | cacti | - | - | 2025-12-02 17:57:12 | Deep Dive |
| CVE-2005-10004 | Cacti graph_view.php RCE via graph_start Parameter Injection | Raxnet/Ian Berry | Cacti | 中危 | - | 2025-08-30 13:45:16 | Deep Dive |
| CVE-2025-26520 | Cacti 安全漏洞 | Cacti | Cacti | High | 7.6 | 2025-02-12 00:00:00 | Deep Dive |
| CVE-2025-24368 | Cacti has a SQL Injection vulnerability when using tree rules through Automation API | Cacti | cacti | 中危 | - | 2025-01-27 17:16:17 | Deep Dive |
| CVE-2025-24367 | Cacti allows Arbitrary File Creation leading to RCE | Cacti | cacti | 中危 | - | 2025-01-27 17:12:40 | Deep Dive |
| CVE-2025-22604 | Cacti has Authenticated RCE via multi-line SNMP responses | Cacti | cacti | Critical | 9.1 | 2025-01-27 17:06:58 | Deep Dive |
| CVE-2024-54145 | Cacti has a SQL Injection vulnerability when request automation devices | Cacti | cacti | Medium | 6.3 | 2025-01-27 17:04:32 | Deep Dive |
| CVE-2024-54146 | Cacti has a SQL Injection vulnerability when view host template | Cacti | cacti | High | 7.6 | 2025-01-27 17:04:17 | Deep Dive |
| CVE-2024-45598 | Cacti has a Local File Inclusion (LFI) Vulnerability via Poller Standard Error Log Path | Cacti | cacti | Medium | 6.0 | 2025-01-27 15:46:02 | Deep Dive |
| CVE-2024-43363 | Remote code execution via Log Poisoning in Cacti | Cacti | cacti | High | 7.2 | 2024-10-07 20:40:39 | Deep Dive |
| CVE-2024-43365 | Stored Cross-site Scripting (XSS) when creating external links in Cacti | Cacti | cacti | Medium | 5.7 | 2024-10-07 20:38:27 | Deep Dive |
| CVE-2024-43364 | Stored Cross-site Scripting (XSS) when creating external links in Cacti | Cacti | cacti | Medium | 5.7 | 2024-10-07 20:38:25 | Deep Dive |
| CVE-2024-43362 | Stored Cross-site Scripting (XSS) when creating external links in Cacti | Cacti | cacti | High | 7.3 | 2024-10-07 20:34:59 | Deep Dive |
| CVE-2024-34340 | Authentication Bypass when using using older password hashes | Cacti | cacti | Critical | 9.1 | 2024-05-13 15:26:32 | Deep Dive |
| CVE-2024-31460 | Cacti SQL Injection vulnerability in lib/api_automation.php caused by reading dirty data stored in database | Cacti | cacti | Medium | 6.5 | 2024-05-13 15:14:39 | Deep Dive |
| CVE-2024-31459 | Cacti RCE vulnerability by file include in lib/plugin.php | Cacti | cacti | High | 8.0 | 2024-05-13 15:11:38 | Deep Dive |
| CVE-2024-31458 | Cacti SQL Injection vulnerability in lib/html_form_templates.php by reading dirty data stored in database | Cacti | cacti | Medium | 4.6 | 2024-05-13 15:07:08 | Deep Dive |
| CVE-2024-31445 | SQL Injection vulnerability in automation_get_new_graphs_sql | Cacti | cacti | High | 8.8 | 2024-05-13 15:05:57 | Deep Dive |
| CVE-2024-31444 | Cacti XSS vulnerability in lib/html.php by reading dirty data stored in database | Cacti | cacti | Medium | 4.6 | 2024-05-13 15:03:58 | Deep Dive |
| CVE-2024-31443 | Cacti XSS vulnerability in lib/html_tree.php by reading dirty data stored in database | Cacti | cacti | Medium | 5.7 | 2024-05-13 15:01:44 | Deep Dive |