Filter
AND
-Infinity
0
Trending
Versions
0.8.5a
12
0.8.7
12
0.6.7
11
0.8
11
0.8.1
11
0.8.2
11
0.8.3
11
0.8.3a
11
0.8.4
11
0.8.6i
11
0.8.2a
10
0.8.5
10
0.8.6c
10
0.8.6f
10
0.8.6j
10
0.8.7a
10
0.5
8
0.6
8
0.6.1
8
0.6.2
8
0.6.3
8
0.6.4
8
0.6.5
8
0.6.6
8
0.6.8
8
0.8.6d
8
0.8.7e
8
0.6.8a
7
0.8.6
7
0.8.6a
7
0.8.6b
7
0.8.6g
7
0.8.6h
7
0.8.6k
7
0.8.7b
7
0.8.7c
7
0.8.7d
7
0.8.7g
7
0.8.7f
5
0.8.8b
5
0.8.8
3
1.1.36
3
1.2.25
3
0.8.6e
2
0.8.7h
2
0.8.8c
2
1.1.12
2
1.1.17
2
1.1.27
2
1.1.38
2
CVE-2023-50250Cross-Site Scripting vulnerability when Import xml template file
6.1
First published (updated )
CVE-2023-49086Cacti is vulnerable to cross-Site scripting (XSS) DOM
5.4
First published (updated )
FedoraStored Cross-Site-Scripting on reports_admin.php device name in Cacti
6.1
First published (updated )
FedoraStored Cross-site Scripting on graphs.php data template formated name view in Cacti
6.1
First published (updated )
FedoraStored Cross-Site-Scripting on data_sources.php debug html-block in Cacti
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CactiCacti has a SQL Injection vulnerability when using tree rules through Automation API
6.9
EPSS
0.04%
First published (updated )
CactiCacti has a SQL Injection vulnerability when request automation devices
6.3
First published (updated )
CactiCacti has a Local File Inclusion (LFI) Vulnerability via Poller Standard Error Log Path
First published (updated )
debian/cactiCacti Cross-site Scripting vulnerability when using JavaScript based messaging API
5.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
debian/cactiCacti XSS vulnerability in lib/html.php by reading dirty data stored in database
5.4
First published (updated )
debian/cactiCacti XSS vulnerability in lib/html_tree.php by reading dirty data stored in database
5.7
First published (updated )
CactiIn Cacti 1.2.19, there is an authentication bypass in the web login functionality because of imprope…
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
FedoraStored Cross-site Scripting on data_sources.php device name view in Cacti
6.1
First published (updated )
FedoraStored Cross-site Scripting in reports_admin.php through Device-Name in 'select' input in Cacti
6.1
First published (updated )
FedoraStored Cross-site Scripting in data_sources.php through Device-Name in 'select' input in Cacti
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CactiCacti before 0.6.8 stores a MySQL username and password in plaintext in config.php, which has world-…
4.6
First published (updated )
CactiCacti 0.8.5a allows remote attackers to gain sensitive information via an HTTP request to (1) auth.p…
First published (updated )
CactiPHP file inclusion vulnerability in top_graph_header.php in Cacti 0.8.6d and possibly earlier versio…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.