6 matches found
SUSE CVE-2017-12978
lib/html.php in Cacti before 1.1.18 has XSS via the title field of an external link added by an authenticated user...
Amazon Linux AMI : cacti (ALAS-2017-904)
A cross-site scripting vulnerability exists in Cacti in the method parameter in spikekill.php. CVE-2017-12927 The lib/html.php script in Cacti has a XSS vulnerability via the title field of an external link added by an authenticated user. CVE-2017-12978 C Tenable Network Security, Inc. The...
Medium: cacti
Issue Overview: A cross-site scripting vulnerability exists in Cacti in the method parameter in spikekill.php. CVE-2017-12927 The lib/html.php script in Cacti has a XSS vulnerability via the title field of an external link added by an authenticated user. CVE-2017-12978 Affected Packages: cacti...
openSUSE Security Update : cacti / cacti-spine (openSUSE-2017-999)
This update for cacti and cacti-spine fixes security issues and bugs. The following vulnerabilities were fixed : - CVE-2017-12927: Cross-site scripting vulnerability in methodparameter bsc1054390 - CVE-2017-12978:Cross-site scripting vulnerability via the title field bsc1054742 It also contains a...
Fedora Update for cacti FEDORA-2017-2f1ca6beb7
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2017-12978
CVE-2017-12978 affects Cacti: lib/html.php vulnerable to XSS via the title field of an external link added by an authenticated user, with impact described as low (I) in CVSS 3.0 terms and the vulnerability present in versions before 1.1.18. Multiple connected advisories confirm fixes in newer rel...