CVE-2008-0784

graph.php in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k allows remote attackers to obtain the full path via an invalid local_graph_id parameter and other unspecified vectors.

Date published : 2008-02-14

http://www.securityfocus.com/bid/27749

http://www.securityfocus.com/archive/1/488018/100/0/threaded