CVE-2014-2709

lib/rrd.php in Cacti 0.8.7g, 0.8.8b, and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in unspecified parameters.

Date published : 2014-04-23

http://www.securityfocus.com/bid/66630

http://svn.cacti.net/viewvc?view=rev&revision=7439