CVE-2013-1434 on Ubuntu 16.04 LTS (xenial) - medium.
Description:
Multiple SQL injection vulnerabilities in (1) api_poller.php and (2) utility.php in Cacti before 0.8.8b allow remote attackers to execute arbitrary SQL commands via unspecified vectors.