Cacti Copy_Cacti_User.PHP SQL Injection Vulnerability

Bugtraq ID:	21823
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Dec 30 2006 12:00AM
Updated:	Jan 04 2007 06:27PM
Credit:	rgod is credited with the discovery of this vulnerability.
Vulnerable:	OpenPKG OpenPKG Stable OpenPKG OpenPKG E1.0-Solid OpenPKG OpenPKG Current OpenPKG OpenPKG 2-Stable-20061018 Cacti Cacti 0.8.6i
Not Vulnerable:

Cacti Copy_Cacti_User.PHP SQL Injection Vulnerability

Cacti is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query.

A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.

Cacti Copy_Cacti_User.PHP SQL Injection Vulnerability

Attackers can exploit this issue via a web client.

The following proof-of-concept exploit is available:

• /data/vulnerabilities/exploits/21823.php

Cacti Copy_Cacti_User.PHP SQL Injection Vulnerability

Solution:
Please see the references for more information.

Cacti Copy_Cacti_User.PHP SQL Injection Vulnerability

References:

• Cacti Homepage (Cacti)