exploitDog

GHSA-385c-m8p7-qvr3

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

lib/html.php in Cacti before 1.1.18 has XSS via the title field of an external link added by an authenticated user.

lib/html.php in Cacti before 1.1.18 has XSS via the title field of an external link added by an authenticated user.

Ссылки

EPSS

Процентиль: 56%

0.00337

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2017-12978

CVSS3: 5.4

ubuntu

больше 8 лет назад

lib/html.php in Cacti before 1.1.18 has XSS via the title field of an external link added by an authenticated user.

CVE-2017-12978

CVSS3: 5.4

nvd

больше 8 лет назад

lib/html.php in Cacti before 1.1.18 has XSS via the title field of an external link added by an authenticated user.

CVE-2017-12978

CVSS3: 5.4

debian

больше 8 лет назад

lib/html.php in Cacti before 1.1.18 has XSS via the title field of an ...

openSUSE-SU-2017:2367-1

suse-cvrf

больше 8 лет назад

Security update for cacti, cacti-spine

EPSS

Процентиль: 56%

0.00337

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79