CVE-2017-12978

Опубликовано: 21 авг. 2017

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 3.5

CVSS3: 5.4

Описание

lib/html.php in Cacti before 1.1.18 has XSS via the title field of an external link added by an authenticated user.

Релиз	Статус	Примечание
artful	not-affected	1.1.18+ds1-1
bionic	not-affected	1.1.18+ds1-1
cosmic	not-affected	1.1.18+ds1-1
devel	not-affected	1.1.18+ds1-1
esm-apps/bionic	not-affected	1.1.18+ds1-1
esm-apps/xenial	not-affected	code not present
esm-infra-legacy/trusty	not-affected	code not present
precise/esm	DNE
trusty	not-affected	code not present
trusty/esm	not-affected	code not present

Показывать по

Ссылки на источники

EPSS

Процентиль: 56%

0.00337

Низкий

3.5 Low

CVSS2

5.4 Medium

CVSS3

Связанные уязвимости

CVE-2017-12978

CVSS3: 5.4

nvd

больше 8 лет назад

lib/html.php in Cacti before 1.1.18 has XSS via the title field of an external link added by an authenticated user.

CVE-2017-12978

CVSS3: 5.4

debian

больше 8 лет назад

lib/html.php in Cacti before 1.1.18 has XSS via the title field of an ...

GHSA-385c-m8p7-qvr3

CVSS3: 5.4

github

больше 3 лет назад

lib/html.php in Cacti before 1.1.18 has XSS via the title field of an external link added by an authenticated user.

openSUSE-SU-2017:2367-1

suse-cvrf

больше 8 лет назад

Security update for cacti, cacti-spine

EPSS

Процентиль: 56%

0.00337

Низкий

3.5 Low

CVSS2

5.4 Medium

CVSS3

CVE-2017-12978

Описание

Пакет cacti

Ссылки на источники

Связанные уязвимости