CVE-2005-2148

Name of the Vulnerable Software and Affected Versions: Cacti versions 0.8.6e and earlier

Description: The issue allows remote attackers to execute arbitrary commands or SQL by sending a legitimate value in a POST request or cookie, then specifying the attack string in the URL. This is due to improper input validation, which causes the get request var function to return the wrong value in the $ REQUEST variable. The original malicious $ GET value remains unmodified. This can be demonstrated in files such as graph image.php and graph.php.

Recommendations: For Cacti versions 0.8.6e and earlier, update to a version that properly validates input to prevent common attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.