6 matches found
CVE-2017-11163
Cross-site scripting XSS vulnerability in aggregategraphs.php in Cacti 1.1.12 allows remote authenticated users to inject arbitrary web script or HTML via specially crafted HTTP Referer headers, related to the $cancelurl variable...
CVE-2017-11163
Cross-site scripting XSS vulnerability in aggregategraphs.php in Cacti 1.1.12 allows remote authenticated users to inject arbitrary web script or HTML via specially crafted HTTP Referer headers, related to the $cancelurl variable...
CVE-2017-11163
Cross-site scripting XSS vulnerability in aggregategraphs.php in Cacti 1.1.12 allows remote authenticated users to inject arbitrary web script or HTML via specially crafted HTTP Referer headers, related to the $cancelurl variable...
CVE-2017-11163
Cross-site scripting XSS vulnerability in aggregategraphs.php in Cacti 1.1.12 allows remote authenticated users to inject arbitrary web script or HTML via specially crafted HTTP Referer headers, related to the $cancelurl variable...
CVE-2017-11163
The CVE-2017-11163 entry corresponds to an XSS issue in Cacti: specifically, aggregate_graphs.php in Cacti before 1.1.16 allows remote authenticated users to inject script/HTML via crafted HTTP Referer headers, tied to the $cancel_url variable. Related CVE-2017-12066 covers the same XSS vector; t...
Cacti XSS Vulnerability - Windows
Cross-site scripting XSS vulnerability in link.php in Cacti allows remote anonymous users to inject arbitrary web script or HTML via the id parameter, related to the diehtmlinputerror function in lib/htmlvalidate.php. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be...