Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2008-0783

Publish Date: 12 Feb 2008

Author: aScii

                							

                source: http://www.securityfocus.com/bid/27749/info
 
Cacti is prone to multiple unspecified input-validation vulnerabilities, including:
 
- Multiple cross-site scripting vulnerabilities
- Multiple SQL-injection vulnerabilities
- An HTTP response-splitting vulnerability.
 
Attackers may exploit these vulnerabilities to influence or misrepresent how web content is served, cached, or interpreted, to compromise the application, to access or modify data, to exploit vulnerabilities in the underlying database, or to execute arbitrary script code in the browser of an unsuspecting user.
 
These issues affect Cacti 0.8.7a and prior versions. 

http://www.example.com/cacti/graph.php?local_graph_id=1&amp;rra_id=34&amp;action=properties&amp;view_type=token'%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

Cacti 0.8.7 - 'graph.php?view_type' Cross-Site Scripting

Vulmon Search

About

Products

Connect