Описание
include/global_session.php in Cacti 1.1.25 has XSS related to (1) the URI or (2) the refresh page.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| cacti | fixed | 1.1.25+ds1-1 | package | |
| cacti | not-affected | stretch | package | |
| cacti | not-affected | jessie | package | |
| cacti | not-affected | wheezy | package |
Примечания
https://github.com/Cacti/cacti/issues/1010
https://github.com/Cacti/cacti/commit/93f661d8adcfa6618b11522cdab30e97bada33fd
https://github.com/Cacti/cacti/commit/4f87256e63859117f81d2a2bd40c9c730e39b65d
EPSS
Процентиль: 54%
0.00312
Низкий
Связанные уязвимости
CVSS3: 6.1
ubuntu
больше 8 лет назад
include/global_session.php in Cacti 1.1.25 has XSS related to (1) the URI or (2) the refresh page.
CVSS3: 6.1
nvd
больше 8 лет назад
include/global_session.php in Cacti 1.1.25 has XSS related to (1) the URI or (2) the refresh page.
CVSS3: 6.1
github
больше 3 лет назад
include/global_session.php in Cacti 1.1.25 has XSS related to (1) the URI or (2) the refresh page.
EPSS
Процентиль: 54%
0.00312
Низкий