WEB Cacti Group Cacti build_graph_object_sql_having SQL Injection -1 (CVE-2024-31445) state 1-F/Flow

Rule ID

1235195

Severity

High

Description

An SQL injection vulnerability has been reported in Cacti. The vulnerability is due to improper validation of user input used in the build_graph_object_sql_having function.

Impact

SQL injection

Recommendation

Update vendor's patch.

IPS Category

Web threats

IPS Anomaly Group

N/A

IPS Rule Default Action

Deny

References

CVE-2024-31445

T1059

T0853

Keywords

N/A

Date Created

2024/06/25

Last Updated

2026/01/13

This website uses cookies to ensure you get the best experience on our website.

Learn more