5.4 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
65.3%
Cross-site scripting (XSS) vulnerability in settings.php in Cacti before 0.8.8d allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
jvn.jp/en/jp/JVN78187936/index.html
jvndb.jvn.jp/jvndb/JVNDB-2015-000094
www.cacti.net/release_notes_0_8_8d.php
www.securitytracker.com/id/1032672
security.gentoo.org/glsa/201509-03