PT-2017-12782 · Cacti · Cacti

Chen Ruiqi

+1

·

Published

2017-08-18

·

Updated

2024-06-15

·

CVE-2017-12927

CVSS v3.1

6.1

Medium

VectorAV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Name of the Vulnerable Software and Affected Versions Cacti version 1.1.17
Description A cross-site scripting issue exists in the method parameter in spikekill.php.
Recommendations For Cacti version 1.1.17, update to a newer version that contains a fix for this issue.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2017-12927
OPENSUSE-SU-2024:10670-1

Affected Products

Cacti