3 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in authprofile.php in Cacti 1.1.13 allows remote attackers to inject arbitrary web script or HTML via specially crafted HTTP Referer headers...
CVE-2017-11691
Consolidated details show CVE-2017-11691 as a Cross-site Scripting (XSS) issue in Cacti 1.1.13, exploitable via specially crafted HTTP Referer headers in auth_profile.php. The affected component is auth_profile.php (Cacti 1.1.13) and the impact is the injection of arbitrary JavaScript/HTML by rem...
CVE-2017-11691
Cross-site scripting XSS vulnerability in authprofile.php in Cacti 1.1.13 allows remote attackers to inject arbitrary web script or HTML via specially crafted HTTP Referer headers...