Lucene search
K

6 matches found

NVD
NVD
added 2017/07/10 6:29 p.m.30 views

CVE-2017-11163

Cross-site scripting XSS vulnerability in aggregategraphs.php in Cacti 1.1.12 allows remote authenticated users to inject arbitrary web script or HTML via specially crafted HTTP Referer headers, related to the $cancelurl variable...

5.4CVSS5.1AI score0.01277EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2017/07/10 6:29 p.m.39 views

CVE-2017-11163

Cross-site scripting XSS vulnerability in aggregategraphs.php in Cacti 1.1.12 allows remote authenticated users to inject arbitrary web script or HTML via specially crafted HTTP Referer headers, related to the $cancelurl variable...

5.4CVSS6.9AI score0.01277EPSS
Exploits1References2
Cvelist
Cvelist
added 2017/07/10 6:0 p.m.35 views

CVE-2017-11163

Cross-site scripting XSS vulnerability in aggregategraphs.php in Cacti 1.1.12 allows remote authenticated users to inject arbitrary web script or HTML via specially crafted HTTP Referer headers, related to the $cancelurl variable...

5.3AI score0.01277EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2017/07/10 6:0 p.m.35 views

CVE-2017-11163

Cross-site scripting XSS vulnerability in aggregategraphs.php in Cacti 1.1.12 allows remote authenticated users to inject arbitrary web script or HTML via specially crafted HTTP Referer headers, related to the $cancelurl variable...

5.4CVSS5.5AI score0.01277EPSS
Exploits1
CVE
CVE
added 2017/07/10 6:0 p.m.75 views

CVE-2017-11163

The CVE-2017-11163 entry corresponds to an XSS issue in Cacti: specifically, aggregate_graphs.php in Cacti before 1.1.16 allows remote authenticated users to inject script/HTML via crafted HTTP Referer headers, tied to the $cancel_url variable. Related CVE-2017-12066 covers the same XSS vector; t...

5.4CVSS5.1AI score0.01277EPSS
Exploits1References2Affected Software1
OpenVAS
OpenVAS
added 2017/07/07 12:0 a.m.25 views

Cacti XSS Vulnerability - Windows

Cross-site scripting XSS vulnerability in link.php in Cacti allows remote anonymous users to inject arbitrary web script or HTML via the id parameter, related to the diehtmlinputerror function in lib/htmlvalidate.php. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be...

5.6AI score
Exploits0References2
Rows per page
Query Builder