RSS   Vulnerabilities for 'Cacti'   RSS

2019-01-16
 
CVE-2018-20726

CWE-79
 

 
A cross-site scripting (XSS) vulnerability exists in host.php (via tree.php) in Cacti before 1.2.0 due to lack of escaping of unintended characters in the Website Hostname field for Devices.

 
 
CVE-2018-20725

CWE-79
 

 
A cross-site scripting (XSS) vulnerability exists in graph_templates.php in Cacti before 1.2.0 due to lack of escaping of unintended characters in the Graph Vertical Label.

 
 
CVE-2018-20724

CWE-79
 

 
A cross-site scripting (XSS) vulnerability exists in pollers.php in Cacti before 1.2.0 due to lack of escaping of unintended characters in the Website Hostname for Data Collectors.

 
 
CVE-2018-20723

CWE-79
 

 
A cross-site scripting (XSS) vulnerability exists in color_templates.php in Cacti before 1.2.0 due to lack of escaping of unintended characters in the Name field for a Color.

 
2018-04-12
 
CVE-2018-10061

CWE-79
 

 
Cacti before 1.1.37 has XSS because it makes certain htmlspecialchars calls without the ENT_QUOTES flag (these calls occur when the html_escape function in lib/html.php is not used).

 
 
CVE-2018-10060

CWE-79
 

 
Cacti before 1.1.37 has XSS because it does not properly reject unintended characters, related to use of the sanitize_uri function in lib/functions.php.

 
 
CVE-2018-10059

CWE-79
 

 
Cacti before 1.1.37 has XSS because the get_current_page function in lib/functions.php relies on $_SERVER['PHP_SELF'] instead of $_SERVER['SCRIPT_NAME'] to determine a page name.

 
2017-11-24
 
CVE-2016-10700

CWE-264
 

 
auth_login.php in Cacti before 1.0.0 allows remote authenticated users who use web authentication to bypass intended access restrictions by logging in as a user not in the cacti database, because the guest user is not considered. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-2313.

 
2017-11-15
 
CVE-2014-4000

CWE-94
 

 
Cacti before 1.0.0 allows remote authenticated users to conduct PHP object injection attacks and execute arbitrary PHP code via a crafted serialized object, related to calling unserialize(stripslashes()).

 
2017-11-10
 
CVE-2017-16785

CWE-79
 

 
Cacti 1.1.27 has reflected XSS via the PATH_INFO to host.php.

 


Copyright 2019, cxsecurity.com

 

Back to Top