10 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-48547
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A reflected cross-site scripting XSS vulnerability in Cacti 0.8.7g and earlier allows unauthenticated remote attackers to inject arbitrary web script or HTML in...
[SECURITY] [DLA 386-1] cacti security update
Package : cacti Version : 0.8.7g-1+squeeze9+deb6u14 CVE ID : CVE-2015-8604 It was discovered that there was another SQL injection vulnerability in cacti, a web interface for graphing monitoring systems. For Debian 6 Squeeze, this issue has been fixed in cacti version 0.8.7g-1+squeeze9+deb6u14...
DLA-374-1 cacti - security update
Bulletin has no description...
DLA-278-1 cacti - security update
Bulletin has no description...
[DLA 40-1] cacti security update
Package : cacti Version : 0.8.7g-1+squeeze5 CVE ID : CVE-2014-5025 CVE-2014-5026 CVE-2014-5261 CVE-2014-5262 Debian Bug : 755032 Multiple security issues cross-site scripting, missing input sanitizing and SQL injection have been discovered in Cacti, a web interface for graphing of monitoring...
cacti security update
Package : cacti Version : 0.8.7g-1+squeeze4 CVE ID : CVE-2014-2326 CVE-2014-2327 CVE-2014-2328 CVE-2014-2708 CVE-2014-2709 CVE-2014-4002 Debian Bug : 742768 743565 752573 Multiple security issues cross-site scripting, cross-site request forgery, SQL injections, missing input sanitising have been...
cacti security update
Package : cacti Version : 0.8.7g-1+squeeze4 CVE ID : CVE-2014-2326 CVE-2014-2327 CVE-2014-2328 CVE-2014-2708 CVE-2014-2709 CVE-2014-4002 Debian Bug : 742768 743565 752573 Multiple security issues cross-site scripting, cross-site request forgery, SQL injections, missing input sanitising have been...
Cacti < 0.8.7g Multiple XSS and HTML Injection Vulnerabilities
According to its self-reported version number, the Cacti application running on the remote web server is prior to version 0.8.7g. It is, therefore, potentially affected by multiple cross-site scripting and HTML injection vulnerabilities. An attacker may be able to exploit these issues to inject...
PT-2010-4094 · Cacti · Cacti
Name of the Vulnerable Software and Affected Versions: Cacti versions prior to 0.8.7g Description: A cross-site scripting XSS issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is due to an incorrect fix for a previous issue. The graph start parameter to the...
PT-2010-4095 · Cacti · Cacti
Name of the Vulnerable Software and Affected Versions: Cacti versions prior to 0.8.7g Description: A cross-site scripting XSS issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved via the filter parameter in utilities.php. Recommendations: For versions...