21Ara
CVE-2023-49084 | Cacti = 1.2.25 link.php filename control (GHSA-pfh9-gwm6-86vp)
A vulnerability was found in Cacti = 1.2.25 and classified as problematic. Affected by this issue is some unknown functionality of the file link.php. The manipulation leads to improper control of filename for include/require statement in php program ('php remote file inclusion'). This vulnerability is handled as CVE-2023-49084. The attack may be launched remotely. There is no exploit available.