Lucene search
K

8 matches found

OpenVAS
OpenVAS
added 2009/05/16 12:0 a.m.19 views

Cacti 'data_input.php' Cross Site Scripting Vulnerability

Cacti is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may let the...

4.3CVSS6.4AI score0.05246EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.25 views

Gentoo Security Advisory GLSA 200803-18 (cacti)

The remote host is missing updates announced in advisory GLSA 200803-18. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

7.5CVSS0.4AI score0.05246EPSS
Exploits3
Debian
Debian
added 2008/07/15 7:5 p.m.37 views

[SECURITY] [DSA 1569-3] New cacti packages fix regression

------------------------------------------------------------------------ Debian Security Advisory DSA-1569-3 [email protected] http://www.debian.org/security/ Thijs Kinkhorst July 15, 2008 http://www.debian.org/security/faq -...

7.5CVSS6.8AI score0.05246EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2008/03/13 12:0 a.m.28 views

GLSA-200803-18 : Cacti: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200803-18 Cacti: Multiple vulnerabilities The following inputs are not properly sanitized before being processed: 'viewtype' parameter in the file graph.php, 'filter' parameter in the file graphview.php, 'action' and 'loginusernam...

7.5CVSS5.8AI score0.05246EPSS
Exploits3References5
OSV
OSV
added 2008/02/14 11:0 p.m.3 views

CVE-2008-0783

Multiple cross-site scripting XSS vulnerabilities in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k allow remote attackers to inject arbitrary web script or HTML via 1 the viewtype parameter to graph.php; 2 the filter parameter to graphview.php; 3 the action parameter to the drawnavigationtext...

5.6AI score0.05246EPSS
Exploits1References23
UbuntuCve
UbuntuCve
added 2008/02/14 11:0 p.m.28 views

CVE-2008-0783

Multiple cross-site scripting XSS vulnerabilities in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k allow remote attackers to inject arbitrary web script or HTML via 1 the viewtype parameter to graph.php; 2 the filter parameter to graphview.php; 3 the action parameter to the drawnavigationtext...

4.3CVSS5.9AI score0.05246EPSS
Exploits1References1
CVE
CVE
added 2008/02/14 10:0 p.m.75 views

CVE-2008-0783

Cacti is affected by multiple input-validation and XSS vulnerabilities (CVE-2008-0783 and related CVEs) in versions up to 0.8.7b and 0.8.6k. The OpenVAS/OpenVAS-derived notes identify several specific vectors for CVE-2008-0783: view_type in graph.php; filter in graph_view.php; action in lib/funct...

4.3CVSS5.5AI score0.05246EPSS
Exploits1References22Affected Software1
Debian CVE
Debian CVE
added 2008/02/14 10:0 p.m.36 views

CVE-2008-0783

Multiple cross-site scripting XSS vulnerabilities in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k allow remote attackers to inject arbitrary web script or HTML via 1 the viewtype parameter to graph.php; 2 the filter parameter to graphview.php; 3 the action parameter to the drawnavigationtext...

4.3CVSS5.6AI score0.05246EPSS
Exploits1
Rows per page
Query Builder