Gentoo Linux Security Advisory GLSA 200604-07 – Several vulnerabilities have been identified in the copy of ADOdb included in Cacti. Andreas Sandblad discovered a dynamic code evaluation vulnerability (CVE-2006-0147) and a potential SQL injection vulnerability (CVE-2006-0146). Andy Staudacher reported another SQL injection vulnerability (CVE-2006-0410), and Gulftech Security discovered multiple cross-site-scripting issues (CVE-2006-0806). Versions less than 0.8.6h_p20060108-r2 are affected.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/45483/glsa-200604-07.txt
Source: https://packetstormsecurity.com/files/45483/Gentoo-Linux-Security-Advisory-200604-7.html