PT-2014-4626 · Cacti+1 · Cacti+1

Moritz Muehlenhoff

·

Published

2014-03-27

·

Updated

2024-06-15

·

CVE-2014-2326

CVSS v2.0

4.3

Medium

VectorAV:N/AC:M/Au:N/C:N/I:P/A:N
Name of the Vulnerable Software and Affected Versions Cacti versions 0.8.7g and earlier, 0.8.8b and earlier
Description A cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML.
Recommendations For versions 0.8.7g and earlier, and 0.8.8b and earlier, update to a version that contains a fix for this issue.

Exploit

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

ALT-PU-2014-1594
ALT-PU-2016-1467
CVE-2014-2326
DSA-2970-1
MGASA-2014-0302
OPENSUSE-SU-2024:10084-1

Affected Products

Alt Linux
Cacti