10 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in include/topgraphheader.php in Cacti before 0.8.7g allows remote attackers to inject arbitrary web script or HTML via the graphstart parameter to graph.php. NOTE: this vulnerability exists because of an incorrect fix for CVE-2009-4032.2.b...
Fedora Update for cacti FEDORA-2009-12560
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Core 11 FEDORA-2009-12575 (cacti)
The remote host is missing an update to cacti announced via advisory FEDORA-2009-12575. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Debian: Security Advisory (DSA-1954-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
New cacti packages fix insufficient input sanitising
No description provided by source. - ------------------------------------------------------------------------ Debian Security Advisory DSA-1954-1 [email protected] http://www.debian.org/security/ Steffen Joeris December 16, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1954-1] New cacti packages fix insufficient input sanitising
------------------------------------------------------------------------ Debian Security Advisory DSA-1954-1 [email protected] http://www.debian.org/security/ Steffen Joeris December 16, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1954-1] New cacti packages fix insufficient input sanitising
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1954-1 [email protected] http://www.debian.org/security/ Steffen Joeris December 16, 2009 http://www.debian.org/security/faq -...
CVE-2009-4032
Multiple cross-site scripting XSS vulnerabilities in Cacti 0.8.7e allow remote attackers to inject arbitrary web script or HTML via vectors related to 1 graph.php, 2 include/topgraphheader.php, 3 lib/htmlform.php, and 4 lib/timespansettings.php, as demonstrated by the a graphend or b graphstart...
CVE-2009-4032
Multiple cross-site scripting XSS vulnerabilities in Cacti 0.8.7e allow remote attackers to inject arbitrary web script or HTML via vectors related to 1 graph.php, 2 include/topgraphheader.php, 3 lib/htmlform.php, and 4 lib/timespansettings.php, as demonstrated by the a graphend or b graphstart...
CVE-2009-4032
CVE-2009-4032 affects Cacti 0.8.7e and earlier, with multiple XSS flaws in graph.php, include/top_graph_header.php, lib/html_form.php, and lib/timespan_settings.php. Exploitation vectors include graph_end/graph_start (graph.php), date1 (graph_view.php), and page_refresh/default_dual_pane_width (g...