Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2017-11163HistoryJul 10, 2017 - 6:29 p.m.
CVE-2017-11163
2017-07-1018:29:00
Debian Security Bug Tracker
security-tracker.debian.org
10
0.001 Low
EPSS
Percentile
19.4%
Cross-site scripting (XSS) vulnerability in aggregate_graphs.php in Cacti 1.1.12 allows remote authenticated users to inject arbitrary web script or HTML via specially crafted HTTP Referer headers, related to the $cancel_url variable.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | cacti | < 1.1.12+ds1-1 | cacti_1.1.12+ds1-1_all.deb |
| Debian | 11 | all | cacti | < 1.1.12+ds1-1 | cacti_1.1.12+ds1-1_all.deb |
| Debian | 10 | all | cacti | < 1.1.12+ds1-1 | cacti_1.1.12+ds1-1_all.deb |
| Debian | 999 | all | cacti | < 1.1.12+ds1-1 | cacti_1.1.12+ds1-1_all.deb |
| Debian | 13 | all | cacti | < 1.1.12+ds1-1 | cacti_1.1.12+ds1-1_all.deb |
Related
cvelist
cvelist
CVE-2017-11163
2017-07-10 18:00:00
CVE-2017-12066
2017-08-01 05:00:00
osv
osv
CVE-2017-11163
2017-07-10 18:29:00
CVE-2017-12066
2017-08-01 05:29:00
prion
prion
Cross site scripting
2017-07-10 18:29:00
Cross site scripting
2017-08-01 05:29:00
cve
cve
CVE-2017-11163
2017-07-10 18:29:00
CVE-2017-12066
2017-08-01 05:29:00
openvas
openvas
Cacti XSS Vulnerability - Linux
2017-07-07 00:00:00
Cacti XSS Vulnerability - Windows
2017-07-07 00:00:00
Mageia: Security Advisory (MGASA-2017-0267)
2022-01-28 00:00:00
ubuntucve
ubuntucve
CVE-2017-11163
2017-07-10 00:00:00
CVE-2017-12066
2017-08-01 00:00:00
debiancve
debiancve
CVE-2017-12066
2017-08-01 05:29:00
nessus
nessus
Amazon Linux AMI : cacti (ALAS-2017-874)
2017-08-18 00:00:00
openSUSE Security Update : cacti / cacti-spine (openSUSE-2017-889)
2017-08-08 00:00:00
amazon
amazon
Important: cacti
2017-08-17 18:36:00
mageia
mageia
Updated cacti packages fix security vulnerabilities
2017-08-14 01:19:29