Authentication Bypass Vulnerability in Cacti before 0.8.8g

Authentication Bypass Vulnerability in Cacti before 0.8.8g

CVE-2016-2313 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

auth_login.php in Cacti before 0.8.8g allows remote authenticated users who use web authentication to bypass intended access restrictions by logging in as a user not in the cacti database.

Learn more about our Web App Pen Testing.