{"id":"CVE-2015-4634","details":"SQL injection vulnerability in graphs.php in Cacti before 0.8.8e allows remote attackers to execute arbitrary SQL commands via the local_graph_id parameter.","modified":"2026-04-16T06:17:34.338683435Z","published":"2015-08-11T14:59:10Z","related":["openSUSE-SU-2024:10084-1"],"references":[{"type":"ADVISORY","url":"http://www.debian.org/security/2015/dsa-3312"},{"type":"EVIDENCE","url":"http://bugs.cacti.net/view.php?id=2577"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-updates/2015-07/msg00052.html"},{"type":"WEB","url":"http://www.cacti.net/release_notes_0_8_8e.php"},{"type":"WEB","url":"http://www.securitytracker.com/id/1032989"}],"schema_version":"1.7.5"}