4 matches found
DEBIAN-CVE-2023-49086
Cacti is a robust performance and fault management framework and a frontend to RRDTool - a Time Series Database TSDB. A vulnerability in versions prior to 1.2.27 bypasses an earlier fix for CVE-2023-39360, therefore leading to a DOM XSS attack. Exploitation of the vulnerability is possible for an...
The vulnerability of the graphs_new.php script used by the Cacti network monitoring software allows a hacker to perform cross-site scripting attacks.
The vulnerability of the graphsnew.php script used by the Cacti network monitoring software exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks using a specially created...
DEBIAN-CVE-2022-41444
Cross Site Scripting XSS vulnerability in Cacti 1.2.21 via crafted POST request to graphsnew.php...
Cacti host_new_graphs_save function SQL injection vulnerability
Cacti is a rotating database RRD tool. In Cacti 0.8.8f and earlier versions, a sql injection vulnerability exists in the function hostnewgraphssave within graphsnew.php. An attacker can exploit this vulnerability to execute arbitrary sql commands...