CVE-2023-46490: 
Cacti vulnerability analysis and mitigation

A SQL Injection vulnerability was discovered in Cacti version 1.2.25, identified as CVE-2023-46490. The vulnerability exists in the form_actions() function within the managers.php file, allowing authenticated attackers to obtain sensitive database information (NVD, CVE).

The vulnerability stems from improper handling of the 'selecteditems' parameter in the formactions() function within managers.php. The request variable is directly joined into SQL statements without proper security checks, leading to SQL injection possibilities. The vulnerability has been assigned a CVSS v3.1 base score of 6.5 (Medium) with the vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N, indicating network accessibility with low attack complexity and requiring low privileges (NVD).

Although there is no direct output of database content, authenticated users with 'Settings/Utilities' permissions can leverage time-based blind SQL injection techniques to extract sensitive information from the database. This can be achieved by measuring the time delays in website responses (GitHub Exploit).

The vulnerability has been addressed in version 1.2.26 and later releases. Users are advised to upgrade to the latest version of Cacti to mitigate this vulnerability (Debian Tracker).