Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

User and Group maintenance are vulnerable to SQL attacks #4678

Closed
TheWitness opened this issue Apr 4, 2022 · 1 comment
Closed

User and Group maintenance are vulnerable to SQL attacks #4678

TheWitness opened this issue Apr 4, 2022 · 1 comment
Labels
bug Undesired behaviour resolved A fixed issue
Milestone

Comments

@TheWitness
Copy link
Member

Describe the bug

It is possible to perform SQL Injections in the pages User and User Admin

Expected behavior

A Secure Cacti

@TheWitness TheWitness added the bug Undesired behaviour label Apr 4, 2022
@TheWitness TheWitness added this to the v1.2.20 milestone Apr 4, 2022
@TheWitness
Copy link
Member Author

First Commit is here: 1b9620c
Second Commit is here: 6a945c4

@TheWitness TheWitness added the resolved A fixed issue label Apr 4, 2022
@netniV netniV changed the title SQL Injection is possible in User and User Group Administration User and Group maintenance is vulnerable to SQL attacks Apr 4, 2022
@netniV netniV changed the title User and Group maintenance is vulnerable to SQL attacks User and Group maintenance are vulnerable to SQL attacks Apr 4, 2022
@github-actions github-actions bot locked and limited conversation to collaborators Dec 1, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
bug Undesired behaviour resolved A fixed issue
Projects
None yet
Development

No branches or pull requests

1 participant