Lucene search
Veracode Vulnerability DatabaseVERACODE:28376HistoryDec 06, 2020 - 4:18 a.m.
Cross-Site Scripting (XSS)
2020-12-0604:18:07
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
15
0.001 Low
EPSS
Percentile
33.4%
Cacti is vulnerable to Cross-Site Scripting (XSS). The vulnerability existed because no escaping occurs before printing out the value of the SNMP community string (SNMP Options) in the View poller cache.
| CPE | Name | Operator | Version |
|---|---|---|---|
| cacti:buster | eq | 1.2.2+ds1-2+deb10u3 | |
| cacti:buster | eq | 1.2.2+ds1-2+deb10u3 | |
| cacti:stretch | eq | 0.8.8h+ds1-10+deb9u1 |
Related
osv
osv
cacti - security update
2019-04-16 00:00:00
CVE-2019-11025
2019-04-08 23:29:00
cacti - security update
2022-03-29 00:00:00
debiancve
debiancve
CVE-2019-11025
2019-04-08 23:29:00
cve
cve
CVE-2019-11025
2019-04-08 23:29:00
prion
prion
Cross site scripting
2019-04-08 23:29:00
openvas
openvas
Cacti < 1.2.3 XSS Vulnerability - Windows
2019-04-10 00:00:00
Cacti < 1.2.3 XSS Vulnerability - Linux
2019-04-10 00:00:00
Debian: Security Advisory (DLA-1757-1)
2019-04-17 00:00:00
cvelist
cvelist
CVE-2019-11025
2019-04-08 22:20:39
debian
debian
[SECURITY] [DLA 1757-1] cacti security update
2019-04-16 12:44:40
[SECURITY] [DLA 2965-1] cacti security update
2022-03-29 21:34:31
ubuntucve
ubuntucve
CVE-2019-11025
2019-04-08 00:00:00
nvd
nvd
CVE-2019-11025
2019-04-08 23:29:00
nessus
nessus
Debian DLA-1757-1 : cacti security update
2019-04-17 00:00:00
Debian DLA-2965-1 : cacti - LTS security update
2022-03-29 00:00:00