Lucene search
K

4 matches found

OSV
OSV
added 2023/12/22 12:15 a.m.0 views

DEBIAN-CVE-2023-49086

Cacti is a robust performance and fault management framework and a frontend to RRDTool - a Time Series Database TSDB. A vulnerability in versions prior to 1.2.27 bypasses an earlier fix for CVE-2023-39360, therefore leading to a DOM XSS attack. Exploitation of the vulnerability is possible for an...

5.4CVSS6.5AI score0.01481EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2023/09/12 12:0 a.m.5 views

The vulnerability of the graphs_new.php script used by the Cacti network monitoring software allows a hacker to perform cross-site scripting attacks.

The vulnerability of the graphsnew.php script used by the Cacti network monitoring software exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks using a specially created...

6.4CVSS5.8AI score0.00767EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2023/08/22 7:16 p.m.2 views

DEBIAN-CVE-2022-41444

Cross Site Scripting XSS vulnerability in Cacti 1.2.21 via crafted POST request to graphsnew.php...

6.1CVSS6AI score0.00631EPSS
Exploits1References1
CNVD
CNVD
added 2015/12/18 12:0 a.m.3 views

Cacti host_new_graphs_save function SQL injection vulnerability

Cacti is a rotating database RRD tool. In Cacti 0.8.8f and earlier versions, a sql injection vulnerability exists in the function hostnewgraphssave within graphsnew.php. An attacker can exploit this vulnerability to execute arbitrary sql commands...

6.5CVSS7.9AI score0.01695EPSS
Exploits1References1
Rows per page
Query Builder