Lucene search
K

22 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-1359

Malware in sbrugna...

8.8CVSS8.6AI score0.01388EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2017-1000031

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SQL injection vulnerability in graphtemplatesinputs.php in Cacti 0.8.8b allows remote attackers to execute arbitrary SQL commands via the graphtemplateinputid a...

8.8CVSS8.6AI score0.01388EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 5:27 a.m.6 views

SUSE CVE-2014-5026

Multiple cross-site scripting XSS vulnerabilities in Cacti 0.8.8b allow remote authenticated users with console access to inject arbitrary web script or HTML via a 1 Graph Tree Title in a delete or 2 edit action; 3 CDEF Name, 4 Data Input Method Name, or 5 Host Templates Name in a delete action; ...

3.5CVSS7.8AI score0.01914EPSS
Exploits1References4
OSV
OSV
added 2017/07/17 1:18 p.m.12 views

CVE-2017-1000032

Cross-Site scripting XSS vulnerabilities in Cacti 0.8.8b allow remote attackers to inject arbitrary web script or HTML via the parentid parameter to tree.php and drpaction parameter to datasources.php...

6.1CVSS6.1AI score
Exploits0References1
UbuntuCve
UbuntuCve
added 2017/07/17 1:18 p.m.21 views

CVE-2017-1000031

SQL injection vulnerability in graphtemplatesinputs.php in Cacti 0.8.8b allows remote attackers to execute arbitrary SQL commands via the graphtemplateinputid and graphtemplateid parameters...

8.8CVSS7.5AI score0.01388EPSS
Exploits1References2
Prion
Prion
added 2017/07/17 1:18 p.m.18 views

Cross site scripting

Cross-Site scripting XSS vulnerabilities in Cacti 0.8.8b allow remote attackers to inject arbitrary web script or HTML via the parentid parameter to tree.php and drpaction parameter to datasources.php...

4.3CVSS6.1AI score0.00887EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCve
added 2017/07/17 1:18 p.m.28 views

CVE-2017-1000032

Cross-Site scripting XSS vulnerabilities in Cacti 0.8.8b allow remote attackers to inject arbitrary web script or HTML via the parentid parameter to tree.php and drpaction parameter to datasources.php...

6.1CVSS6.8AI score0.00887EPSS
Exploits0References2
CVE
CVE
added 2017/07/13 8:0 p.m.61 views

CVE-2017-1000032

CVE-2017-1000032 : XSS in Cacti 0.8.8b allows remote attackers to inject arbitrary web script or HTML via the parent_id parameter to tree.php and the drp_action parameter to data_sources.php. The connected notices (SU̲SE, NVD, CNVD, OSV, etc.) consistently describe the vulnerability in Cacti 0.8.8...

6.1CVSS6.6AI score0.00887EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2017/07/13 8:0 p.m.55 views

CVE-2017-1000031

CVE-2017-1000031 involves a SQL injection in the Cacti project (version 0.8.8b) where the vulnerability is located in the graph_templates_inputs.php mechanism. An attacker can leverage the parameters graph_template_input_id and graph_template_id to execute arbitrary SQL commands remotely. The con...

8.8CVSS9.2AI score0.01388EPSS
Exploits1References1Affected Software1
Debian CVE
Debian CVE
added 2017/07/13 8:0 p.m.21 views

CVE-2017-1000032

Cross-Site scripting XSS vulnerabilities in Cacti 0.8.8b allow remote attackers to inject arbitrary web script or HTML via the parentid parameter to tree.php and drpaction parameter to datasources.php...

6.1CVSS6.6AI score0.00887EPSS
Exploits0
NVD
NVD
added 2014/10/20 5:55 p.m.18 views

CVE-2014-5026

Multiple cross-site scripting XSS vulnerabilities in Cacti 0.8.8b allow remote authenticated users with console access to inject arbitrary web script or HTML via a 1 Graph Tree Title in a delete or 2 edit action; 3 CDEF Name, 4 Data Input Method Name, or 5 Host Templates Name in a delete action; ...

3.5CVSS7.3AI score0.01914EPSS
Exploits1References8
Prion
Prion
added 2014/10/20 5:55 p.m.21 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Cacti 0.8.8b allow remote authenticated users with console access to inject arbitrary web script or HTML via a 1 Graph Tree Title in a delete or 2 edit action; 3 CDEF Name, 4 Data Input Method Name, or 5 Host Templates Name in a delete action; ...

3.5CVSS5.5AI score0.01914EPSS
Exploits1References8Affected Software3
Debian CVE
Debian CVE
added 2014/10/20 5:0 p.m.31 views

CVE-2014-5025

Cross-site scripting XSS vulnerability in datasources.php in Cacti 0.8.8b allows remote authenticated users with console access to inject arbitrary web script or HTML via the namecache parameter in a dsedit action...

3.5CVSS7.2AI score0.01778EPSS
Exploits1
Debian CVE
Debian CVE
added 2014/10/20 5:0 p.m.26 views

CVE-2014-5026

Multiple cross-site scripting XSS vulnerabilities in Cacti 0.8.8b allow remote authenticated users with console access to inject arbitrary web script or HTML via a 1 Graph Tree Title in a delete or 2 edit action; 3 CDEF Name, 4 Data Input Method Name, or 5 Host Templates Name in a delete action; ...

3.5CVSS7.7AI score0.01914EPSS
Exploits1
canvas
canvas
added 2014/08/22 2:55 p.m.48 views

Immunity Canvas: CVE_2014_5261

Name| CVE20145261 ---|--- CVE| CVE-2014-5261 Exploit Pack| CANVAS Description| CVE-2014-5261 Notes| CVE Name: CVE-2014-5261 VENDOR: The Cacti Group Changelog: http://svn.cacti.net/viewvc?view=rev&revision=7454 Notes: This is a post-authentication command injection vulnerability in Cacti 0.8.8b,...

7.5CVSS0.8AI score0.10773EPSS
Exploits1
NVD
NVD
added 2014/07/03 2:55 p.m.22 views

CVE-2014-4002

Multiple cross-site scripting XSS vulnerabilities in Cacti 0.8.8b allow remote attackers to inject arbitrary web script or HTML via the 1 drpaction parameter to cdef.php, 2 datainput.php, 3 dataqueries.php, 4 datasources.php, 5 datatemplates.php, 6 graphtemplates.php, 7 graphs.php, 8 host.php, or...

4.3CVSS5.6AI score0.02096EPSS
Exploits0References8
Prion
Prion
added 2014/07/03 2:55 p.m.25 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Cacti 0.8.8b allow remote attackers to inject arbitrary web script or HTML via the 1 drpaction parameter to cdef.php, 2 datainput.php, 3 dataqueries.php, 4 datasources.php, 5 datatemplates.php, 6 graphtemplates.php, 7 graphs.php, 8 host.php, or...

4.3CVSS5.9AI score0.02096EPSS
Exploits0References8Affected Software2
UbuntuCve
UbuntuCve
added 2014/07/03 2:55 p.m.26 views

CVE-2014-4002

Multiple cross-site scripting XSS vulnerabilities in Cacti 0.8.8b allow remote attackers to inject arbitrary web script or HTML via the 1 drpaction parameter to cdef.php, 2 datainput.php, 3 dataqueries.php, 4 datasources.php, 5 datatemplates.php, 6 graphtemplates.php, 7 graphs.php, 8 host.php, or...

4.3CVSS7.2AI score0.02096EPSS
Exploits0References1
CVE
CVE
added 2014/07/03 2:0 p.m.74 views

CVE-2014-4002

CVE-2014-4002 is a set of cross-site scripting (XSS) vulnerabilities in Cacti 0.8.8b that affect multiple PHP scripts and parameters, including drp_action in cdef.php and numerous others (data_input.php, data_queries.php, data_sources.php, data_templates.php, graph_templates.php, graphs.php, host...

4.3CVSS7.5AI score0.02096EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2014/07/03 2:0 p.m.29 views

CVE-2014-4002

Multiple cross-site scripting XSS vulnerabilities in Cacti 0.8.8b allow remote attackers to inject arbitrary web script or HTML via the 1 drpaction parameter to cdef.php, 2 datainput.php, 3 dataqueries.php, 4 datasources.php, 5 datatemplates.php, 6 graphtemplates.php, 7 graphs.php, 8 host.php, or...

4.3CVSS7.9AI score0.02096EPSS
Exploits0
Rows per page
Query Builder