CVE-2005-1524
cacti - several
EPSS 12.1%
Description
PHP file inclusion vulnerability in top_graph_header.php in Cacti 0.8.6d and possibly earlier versions allows remote attackers to execute arbitrary PHP code via the config[library_path] parameter.
How to fix CVE-2005-1524
To remediate CVE-2005-1524, upgrade the affected package to a fixed version below.
- Debian/cacti—upgrade to 0.8.6e-1 or later
- Debian/cacti—upgrade to 0.6.7-2.5 or later
Is CVE-2005-1524 being exploited?
Moderate — EPSS is 12.1%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (2)
- from 0, < 0.8.6e-1
- from 0, < 0.6.7-2.5