Cacti 1.2.25 released: Network traffic graphics monitoring and analysis tools
Cacti is a complete network graphing solution designed to harness the power of RRDTool‘s data storage and graphing functionality. Cacti provide a fast poller, advanced graph templating, multiple data acquisition methods, and user management features out of the box. All of this is wrapped in an intuitive, easy-to-use interface that makes sense for LAN-sized installations up to complex networks with thousands of devices.
Cacti provides the following features:
- remote and local data collectors
- network discovery
- device management automation
- graph templating
- custom data acquisition methods
- user, group and domain management
- C3 level security settings for local accounts
- strong password hashing
- forced regular password changes, complexity, and history
- account lockout support
All of this is wrapped in an intuitive, easy to use interface that makes sense for both LAN-sized installations and complex networks with thousands of devices.
Developed in the early 2000s by Ian Berry as a high school project, it has been used by thousands of companies and enthusiasts to monitor and manage their Networks and Data Centers.
Changelog v1.2.25
- security #GHSA-77rf-774j-6h3p: Protect against Insecure deserialization of filter data
- security #GHSA-gx8c-xvjh-9qh4: Protect against Cross-Site Scripting vulnerability when creating new graphs
- security #GHSA-6r43-q2fw-5wrg: Protect against Unauthenticated SQL Injection when viewing graphs
- security #GHSA-6jhp-mgqg-fhqg: Protect against SQL Injection when saving data with sql_save()
- security #GHSA-g6ff-58cj-x3cp: Protect against Authenticated command injection when using SNMP options
- security #GHSA-q4wh-3f9w-836h: Protect against Authenticated SQL injection vulnerability when managing graphs
- security #GHSA-gj95-7xr8-9p7g: Protect against Authenticated SQL injection vulnerability when managing reports
- security #GHSA-v5w7-hww7-2f22: Protect against SQL Injection when using regular expressions
- security #GHSA-4pjv-rmrp-r59x: Protect against Open redirect in change password functionality
- security #GHSA-rwhh-xxm6-vcrv: Protect against Cross-Site Scripting vulnerability with Device Name when managing Data Sources
- security #GHSA-24w4-4hp2-3j8h: Protect against Cross-Site Scripting vulnerability with Device Name when administrating Reports
- security #GHSA-5hpr-4hhc-8q42: Protect against Cross-Site Scripting vulnerability with Device Name when editing Graphs whilst managing Reports
- security #GHSA-vqcc-5v63-g9q7: Protect against Cross-Site Scripting vulnerability with Device Name when managing Data Sources
- security #GHSA-9fj7-8f2j-2rw2: Protect against Cross-Site Scripting vulnerability with Device Name when debugging data queries
- security #GHSA-6hrc-2cfc-8hm7: Protect against Cross-Site Scripting vulnerability with Data Source Name when managing Graphs
- security #GHSA-hrg9-qqqx-wc4h: Protect against Cross-Site Scripting vulnerability with Data Source Name when debugging Data Queries
- security #GHSA-r8qq-88g3-hmgv: Protect against Cross-Site Scripting vulnerability with Data Source Information when managing Data Sources
- security #GHSA-rf5w-pq3f-9876: Protect against Privilege escalation when Cacti installed using Windows Installer defaults
- More…
