Lucene search
RedhatCVELIST:CVE-2021-23225HistoryJan 19, 2022 - 8:38 p.m.
CVE-2021-23225
2022-01-1920:38:52
CWE-79
redhat
www.cve.org
1
Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary web script or HTML in the “new_username” field during creation of a new user via “Copy” method at user_admin.php.
CNA Affected
[
{
"product": "Cacti",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "1.1.38"
}
]
}
]Related
osv
osv
CVE-2021-23225
2022-01-19 21:15:08
cacti - security update
2022-03-29 00:00:00
cve
cve
CVE-2021-23225
2022-01-19 21:15:08
debiancve
debiancve
CVE-2021-23225
2022-01-19 21:15:08
ubuntucve
ubuntucve
CVE-2021-23225
2022-01-19 00:00:00
nvd
nvd
CVE-2021-23225
2022-01-19 21:15:08
cnvd
cnvd
Cacti Cross-Site Scripting Vulnerability (CNVD-2022-08362)
2022-01-23 00:00:00
prion
prion
Design/Logic Flaw
2022-01-19 21:15:00
debian
debian
[SECURITY] [DLA 2965-1] cacti security update
2022-03-29 21:34:31
openvas
openvas
Debian: Security Advisory (DLA-2965-1)
2022-03-30 00:00:00
nessus
nessus
Debian DLA-2965-1 : cacti - LTS security update
2022-03-29 00:00:00