Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2008-0783
HistoryFeb 14, 2008 - 11:00 p.m.

CVE-2008-0783

2008-02-1423:00:00
CWE-79
[email protected]
web.nvd.nist.gov

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.7 Medium

AI Score

Confidence

High

0.01 Low

EPSS

Percentile

83.6%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k allow remote attackers to inject arbitrary web script or HTML via (1) the view_type parameter to graph.php; (2) the filter parameter to graph_view.php; (3) the action parameter to the draw_navigation_text function in lib/functions.php, reachable through index.php (aka the login page) or data_input.php; or (4) the login_username parameter to index.php.

Affected configurations

NVD
Node
cacticactiMatch0.6.7
OR
cacticactiMatch0.8
OR
cacticactiMatch0.8.1
OR
cacticactiMatch0.8.2
OR
cacticactiMatch0.8.2a
OR
cacticactiMatch0.8.3
OR
cacticactiMatch0.8.3a
OR
cacticactiMatch0.8.4
OR
cacticactiMatch0.8.5
OR
cacticactiMatch0.8.5a
OR
cacticactiMatch0.8.6c
OR
cacticactiMatch0.8.6f
OR
cacticactiMatch0.8.6i
OR
cacticactiMatch0.8.6j
OR
cacticactiMatch0.8.7
OR
cacticactiMatch0.8.7a

References

Related

openvas 12
cve 1
ubuntucve 1
cvelist 1
prion 1
debiancve 1
debian 3
nessus 4
gentoo 1
securityvulns 4
redhatcve 1
openvas
openvas
Cacti 'data_input.php' Cross Site Scripting Vulnerability
2009-05-16 00:00:00
Cacti < 0.8.7b 'data_input.php' XSS Vulnerability
2009-05-16 00:00:00
Debian: Security Advisory (DSA-1569-1)
2008-08-15 00:00:00
cve
cve
CVE-2008-0783
2008-02-14 23:00:00
ubuntucve
ubuntucve
CVE-2008-0783
2008-02-14 00:00:00
cvelist
cvelist
CVE-2008-0783
2008-02-14 22:00:00
prion
prion
Cross site scripting
2008-02-14 23:00:00
debiancve
debiancve
CVE-2008-0783
2008-02-14 23:00:00
debian
debian
[SECURITY] [DSA 1569-2] New cacti packages fix regression
2008-05-06 11:12:10
[SECURITY] [DSA 1569-3] New cacti packages fix regression
2008-07-15 19:05:33
[SECURITY] [DSA 1569-1] New cacti packages fix multiple vulnerabilities
2008-05-05 15:58:54
nessus
nessus
Debian DSA-1569-2 : cacti - insufficient input sanitising
2008-05-09 00:00:00
Fedora 7 : cacti-0.8.7b-1.fc7 (2008-1737)
2008-02-18 00:00:00
Fedora 8 : cacti-0.8.7b-1.fc8 (2008-1699)
2008-02-18 00:00:00
gentoo
gentoo
Cacti: Multiple vulnerabilities
2008-03-10 00:00:00
securityvulns
securityvulns
[ GLSA 200803-18 ] Cacti: Multiple vulnerabilities
2008-03-11 00:00:00
[ MDVSA-2008:052 ] - Updated cacti packages fix multiple vulnerabilities
2008-02-29 00:00:00
Daily web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2008-02-29 00:00:00
redhatcve
redhatcve
CVE-2008-0785
2019-10-04 21:48:39

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.7 Medium

AI Score

Confidence

High

0.01 Low

EPSS

Percentile

83.6%

JSON
Related for NVD:CVE-2008-0783
openvas12cve1ubuntucve1cvelist1prion1debiancve1debian3nessus4gentoo1securityvulns4redhatcve1