3 matches found
DEBIAN-CVE-2021-3816
Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary HTML in the groupprefix field during the creation of a new group via "Copy" method at usergroupadmin.php...
CVE-2021-3816
CVE-2021-3816 affects Cacti 1.1.38. An authenticated user with User Management permissions can inject arbitrary HTML into the group_prefix field when creating a new group via the Copy method in user_group_admin.php. This constitutes an HTML injection vulnerability in the group creation workflow. ...
CVE-2021-3816
Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary HTML in the groupprefix field during the creation of a new group via "Copy" method at usergroupadmin.php...