8 matches found
SUSE CVE-2024-43365
Cacti is an open source performance and fault management framework. Theconsolenewsection parameter is not properly sanitized when saving external links in links.php . Morever, the said consolenewsection parameter is stored in the database and reflected back to user in index.php, finally leading t...
DEBIAN-CVE-2024-43365
Cacti is an open source performance and fault management framework. Theconsolenewsection parameter is not properly sanitized when saving external links in links.php . Morever, the said consolenewsection parameter is stored in the database and reflected back to user in index.php, finally leading t...
CVE-2024-43365 Stored Cross-site Scripting (XSS) when creating external links in Cacti
Cacti is an open source performance and fault management framework. Theconsolenewsection parameter is not properly sanitized when saving external links in links.php . Morever, the said consolenewsection parameter is stored in the database and reflected back to user in index.php, finally leading t...
CVE-2024-43365 Stored Cross-site Scripting (XSS) when creating external links in Cacti
Cacti is an open source performance and fault management framework. Theconsolenewsection parameter is not properly sanitized when saving external links in links.php . Morever, the said consolenewsection parameter is stored in the database and reflected back to user in index.php, finally leading t...
CVE-2024-43365
CVE-2024-43365 affects Cacti. The issue is a stored XSS in the consolenewsection parameter when creating external links (links.php), which is saved in the database and reflected in index.php. Exploitation requires user privileges to create external links; input is stored and displayed without pro...
CVE-2024-43365 Stored Cross-site Scripting (XSS) when creating external links in Cacti
Cacti is an open source performance and fault management framework. Theconsolenewsection parameter is not properly sanitized when saving external links in links.php . Morever, the said consolenewsection parameter is stored in the database and reflected back to user in index.php, finally leading t...
CVE-2024-43365
Cacti is an open source performance and fault management framework. Theconsolenewsection parameter is not properly sanitized when saving external links in links.php . Morever, the said consolenewsection parameter is stored in the database and reflected back to user in index.php, finally leading t...
PT-2024-7759 · Cacti · Cacti
Name of the Vulnerable Software and Affected Versions: Cacti versions prior to 1.2.28 Description: The issue arises from the improper sanitization of the consolenewsection parameter when saving external links in links.php, which is then stored in the database and reflected back to the user in...