Ubuntu
cacti package

Branches for Trusty

Name		Status	Last Modified	Last Commit
lp://staging/ubuntu/trusty-proposed/cacti		2 Mature	2014-04-07 03:43:12 UTC 2014-04-07	47. Fix postinst for lighttpd setups whic... Author: Paul Gevers Revision Date: 2014-04-06 19:59:12 UTC Fix postinst for lighttpd setups which fail on update due to lighty-enable-mod exiting with non-zero if config is already loaded (Closes: 743727)
lp://staging/ubuntu/trusty-security/cacti		2 Mature	2015-07-01 07:25:55 UTC 2015-07-01	46. * Security update (LP: #1210822): -... Author: Paul Gevers Revision Date: 2015-06-27 14:25:12 UTC * Security update (LP: #1210822): - CVE-2015-2665 Cross-site scripting (XSS) vulnerability in Cacti before 0.8.8d allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. - CVE-2015-4342 SQL Injection and Location header injection from cdef id - CVE-2015-4454 SQL injection vulnerability in the get_hash_graph_template function in lib/functions.php in Cacti before 0.8.8d allows remote attackers to execute arbitrary SQL commands via the graph_template_id parameter to graph_templates.php. - Unassigned CVE SQL injection VN:JVN#78187936 / TN:JPCERT#98968540 - CVE-2014-5261 Unsufficient input sanitation leads to shell command injection possibilities - CVE-2014-5262 Incomplete and incorrect input parsing leads to SQL injection attack scenarios - CVE-2014-5025 Cross Site Scripting Vulnerability - CVE-2014-5026 Cross Site Scripting Vulnerability - CVE-2014-5043 Cross Site Scripting Vulnerability - CVE-2014-2327 Cross Site Request Forgery Vulnerability - CVE-2014-4002 Cross-Site Scripting Vulnerability
lp://staging/ubuntu/trusty-updates/cacti		2 Mature	2015-07-01 08:06:40 UTC 2015-07-01	46. * Security update (LP: #1210822): -... Author: Paul Gevers Revision Date: 2015-06-27 14:25:12 UTC * Security update (LP: #1210822): - CVE-2015-2665 Cross-site scripting (XSS) vulnerability in Cacti before 0.8.8d allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. - CVE-2015-4342 SQL Injection and Location header injection from cdef id - CVE-2015-4454 SQL injection vulnerability in the get_hash_graph_template function in lib/functions.php in Cacti before 0.8.8d allows remote attackers to execute arbitrary SQL commands via the graph_template_id parameter to graph_templates.php. - Unassigned CVE SQL injection VN:JVN#78187936 / TN:JPCERT#98968540 - CVE-2014-5261 Unsufficient input sanitation leads to shell command injection possibilities - CVE-2014-5262 Incomplete and incorrect input parsing leads to SQL injection attack scenarios - CVE-2014-5025 Cross Site Scripting Vulnerability - CVE-2014-5026 Cross Site Scripting Vulnerability - CVE-2014-5043 Cross Site Scripting Vulnerability - CVE-2014-2327 Cross Site Request Forgery Vulnerability - CVE-2014-4002 Cross-Site Scripting Vulnerability
lp://staging/ubuntu/trusty/cacti		1 Development	2014-04-06 19:59:12 UTC 2014-04-06	45. Fix postinst for lighttpd setups whic... Author: Paul Gevers Revision Date: 2014-04-06 19:59:12 UTC Fix postinst for lighttpd setups which fail on update due to lighty-enable-mod exiting with non-zero if config is already loaded (Closes: 743727)