Cacti, the performance and fault management framework, has been discovered with a blind SQL injection vulnerability, which could reveal Cacti database contents or trigger remote code execution. The CVE for this vulnerability has been assigned with CVE-2023-51448, and the severity has been given as 8.8 (High). This vulnerability existed due to insufficient sanitization of a […]
The post Cacti Blind, SQL Injection Flaw, Enables Remote Code Execution appeared first on GBHackers on Security | #1 Globally Trusted Cyber Security News Platform.
Free Webinar
Fastrack Compliance: The Path to ZERO-Vulnerability
Compounding the problem are zero-day vulnerabilities like the MOVEit SQLi, Zimbra XSS, and 300+ such vulnerabilities that get discovered each month. Delays in fixing these vulnerabilities lead to compliance issues, these delay can be minimized with a unique feature on AppTrana that helps you to get “Zero vulnerability report” within 72 hours.
Source: gbHackers
Source Link: https://gbhackers.com/cacti-blind-sql-injection-flaw/