Mandriva: 2013:215: cacti

LinuxSecurity.com: SQL injection and shell escaping issues were discovered and fixed in
cacti (CVE-2013-1434, CVE-2013-1435).
The updated packages have been upgraded to the 0.8.8b version which
is not vulnerable to these issues.
[More...]