First published: Mon Oct 20 2014(Updated: )
Cross-site scripting (XSS) vulnerability in data_sources.php in Cacti 0.8.8b allows remote authenticated users with console access to inject arbitrary web script or HTML via the name_cache parameter in a ds_edit action.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Debian Debian Linux | =7.0 | |
openSUSE openSUSE | =13.1 | |
openSUSE openSUSE | =13.2 | |
Cacti Cacti | =0.8.8b |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.