CVE-2021-26247

Name of the Vulnerable Software and Affected Versions Cacti versions (affected versions not specified)

Description The issue allows an unauthenticated remote user to execute a JavaScript payload by visiting a specific URL. This is achieved by injecting the payload into the ref URL parameter in the auth changepassword.php page, accessible at http://<CACTI SERVER>/auth changepassword.php?ref=<script>alert(1)</script>. The ref parameter is vulnerable to JavaScript injection.

Recommendations As a temporary workaround, consider restricting access to the auth changepassword.php page until a patch is available. Avoid using the ref parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.