Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2017/10/03 12:0 a.m.30 views

Amazon Linux AMI : cacti (ALAS-2017-904)

A cross-site scripting vulnerability exists in Cacti in the method parameter in spikekill.php. CVE-2017-12927 The lib/html.php script in Cacti has a XSS vulnerability via the title field of an external link added by an authenticated user. CVE-2017-12978 C Tenable Network Security, Inc. The...

6.1CVSS6AI score0.01374EPSS
Exploits0References3
Amazon
Amazon
added 2017/10/02 12:0 a.m.34 views

Medium: cacti

Issue Overview: A cross-site scripting vulnerability exists in Cacti in the method parameter in spikekill.php. CVE-2017-12927 The lib/html.php script in Cacti has a XSS vulnerability via the title field of an external link added by an authenticated user. CVE-2017-12978 Affected Packages: cacti...

6.1CVSS5.9AI score0.01374EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/09/06 12:0 a.m.29 views

openSUSE Security Update : cacti / cacti-spine (openSUSE-2017-999)

This update for cacti and cacti-spine fixes security issues and bugs. The following vulnerabilities were fixed : - CVE-2017-12927: Cross-site scripting vulnerability in methodparameter bsc1054390 - CVE-2017-12978:Cross-site scripting vulnerability via the title field bsc1054742 It also contains a...

6.1CVSS6.3AI score0.01374EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2017/09/02 12:0 a.m.14 views

Fedora Update for cacti FEDORA-2017-2f1ca6beb7

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS5.9AI score0.01374EPSS
Exploits0References2
Check Point Advisories
Check Point Advisories
added 2017/08/30 12:0 a.m.6 views

Cacti spikekill.php Cross-Site Scripting (CVE-2017-12927)

A reflected cross-site scripting vulnerability exists in Cacti. This vulnerability is due to improper validation of user supplied input within the web user interface when accessing the spikekill.php page...

4.3CVSS5.6AI score0.01374EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2017/08/18 2:29 a.m.24 views

CVE-2017-12927

A cross-site scripting vulnerability exists in Cacti 1.1.17 in the method parameter in spikekill.php...

6.1CVSS6.6AI score0.01374EPSS
Exploits0References3
CVE
CVE
added 2017/08/18 2:0 a.m.73 views

CVE-2017-12927

CVE-2017-12927 is an XSS vulnerability in Cacti, exposed via spikekill.php in Cacti 1.1.17. Upgrading to the patched release (e.g., 1.1.19) is recommended; advisories from openSUSE, Fedora, and Amazon Linux reference this CVE and the fix as part of their updates. The connected documents do not pr...

6.1CVSS5.7AI score0.01374EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder