all InfoSec news
SQLi vulnerability in Cacti could lead to RCE (CVE-2023-51448)
Help Net Security www.helpnetsecurity.com
A blind SQL injection vulnerability (CVE-2023-51448) in Cacti, a widely-used network monitoring, performance and fault management framework, could lead to information disclosure and potentially remote code execution. Cacti is often used in network operation centers of telecoms and web hosting providers, to collect network performance data and store it in RRDtool, a logging and graphing database and system that, through a web interface, creates graphical representations of the collected data. About CVE-2023-51448 CVE-2023-51448 is a … More
The post …
cacti centers code code execution collect cve data disclosure don't miss framework hosting hot stuff information information disclosure injection management monitoring network network monitoring open source performance rce remote code remote code execution security update sql sqli sql injection store synopsys telecoms vulnerability web web hosting