CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

204 matches found

SUSE CVE•added 2026/01/30 12:31 a.m.•6 views

SUSE CVE-2025-45160

A HTML injection vulnerability exists in the file upload functionality of Cacti , , into the rendered page. NOTE: Multiple third-parties including the maintainer have stated that they cannot reproduce this issue after 1.2.27...

5.4CVSS5.5AI score0.00016EPSS

Exploits1References3

OSV•added 2026/01/29 6:16 p.m.•2 views

CVE-2025-45160

5.4CVSS5.9AI score

Exploits0References2

Positive Technologies•added 2026/01/29 12:0 a.m.•2 views

PT-2026-5309

A HTML injection vulnerability exists in the file upload functionality of Cacti , , into the rendered page...

6AI score0.00016EPSS

Exploits1References2

ATTACKERKB•added 2026/01/29 12:0 a.m.•3 views

CVE-2025-45160

A HTML injection vulnerability exists in the file upload functionality of Cacti = 1.2.29. When a file with an invalid format is uploaded, the application reflects the submitted filename back into an error popup without proper sanitization. As a result, attackers can inject arbitrary HTML elements...

5.4CVSS5.4AI score0.00016EPSS

Exploits1References3

Tenable Nessus•added 2025/12/03 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-66399

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cacti is an open source performance and fault management framework. Prior to 1.2.29, there is an input- validation flaw in the SNMP device configuration...

8.8CVSS7.5AI score0.00319EPSS

Exploits1References3

OSV•added 2025/12/02 6:15 p.m.•3 views

UBUNTU-CVE-2025-66399

Cacti is an open source performance and fault management framework. Prior to 1.2.29, there is an input-validation flaw in the SNMP device configuration functionality. An authenticated Cacti user can supply crafted SNMP community strings containing control characters including newlines that are...

8.8CVSS6AI score0.00319EPSS

Exploits1References3

Cvelist•added 2025/12/02 5:57 p.m.•12 views

CVE-2025-66399 SNMP Command Injection leads to RCE in Cacti

8.7CVSS0.00319EPSS

Exploits1References1

CNNVD•added 2025/12/02 12:0 a.m.•2 views

Cacti 安全漏洞

Cacti is a suite of open source network traffic monitoring and analysis tools from the Cacti team. The tool obtains data via snmpget, analyzes it using RRDtool drawing graphs, and provides data and user management features. A security vulnerability exists in Cacti versions prior to 1.2.29 that...

8.8CVSS7.9AI score0.00319EPSS

Exploits1References3