Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2021-3816

Опубликовано: 19 янв. 2022
Источник: debian

Описание

Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary HTML in the group_prefix field during the creation of a new group via "Copy" method at user_group_admin.php.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
cactifixed1.2.1+ds1-1package
cactinot-affectedstretchpackage

Примечания

  • https://github.com/Cacti/cacti/issues/1882

  • Fixed by: https://github.com/Cacti/cacti/commit/2b8097c06030ab72c5b3bdadb23dceb5332f0e94 (1.2.0-beta1)

Связанные уязвимости

ubuntu логотип

CVE-2021-3816

CVSS3: 5.4
ubuntu
около 4 лет назад

Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary HTML in the group_prefix field during the creation of a new group via "Copy" method at user_group_admin.php.

nvd логотип

CVE-2021-3816

CVSS3: 5.4
nvd
около 4 лет назад

Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary HTML in the group_prefix field during the creation of a new group via "Copy" method at user_group_admin.php.

github логотип

GHSA-6gq5-766m-4c86

github
около 4 лет назад

Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary HTML in the group_prefix field during the creation of a new group via "Copy" method at user_group_admin.php.