Filter
Software
debian/cactiCacti Cross-site Scripting vulnerability when using JavaScript based messaging API
5.4
First published (updated )
Cacti CactiCacti Cross-site Scripting vulnerability when managing trees
7.6
First published (updated )
debian/cactiCacti RCE vulnerability when importing packages
9.1
First published (updated )
debian/cactiCacti RCE vulnerability by file include in lib/plugin.php
8.1
First published (updated )
debian/cactiCacti SQL Injection vulnerability in lib/html_form_templates.php by reading dirty data stored in database
8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
debian/cactiAuthentication Bypass when using using older password hashes
9.1
EPSS
0.06%
First published (updated )
debian/cactiCacti SQL Injection vulnerability in lib/api_automation.php caused by reading dirty data stored in database
8.8
First published (updated )
debian/cactiSQL Injection vulnerability in automation_get_new_graphs_sql
8.8
First published (updated )
debian/cactiCacti XSS vulnerability in lib/html.php by reading dirty data stored in database
5.4
First published (updated )
debian/cactiCacti XSS vulnerability in lib/html_tree.php by reading dirty data stored in database
5.7
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Cacti CactiCacti Command Injection Vulnerability
First published (updated )
Cacti CactiStored Cross-site Scripting (XSS) when creating external links in Cacti
7.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Cacti CactiStored Cross-site Scripting (XSS) when creating external links in Cacti
8.2
First published (updated )
Cacti CactiRemote code execution via Log Poisoning in Cacti
7.2
First published (updated )
Cacti CactiStored Cross-site Scripting (XSS) when creating external links in Cacti
8.2
First published (updated )
Cacti CactiCacti before 1.2.6 allows IDOR (Insecure Direct Object Reference) for accessing any graph via a modi…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Cacti CactiIn Cacti 1.2.19, there is an authentication bypass in the web login functionality because of imprope…
5.3
First published (updated )
Fedoraproject FedoraStored Cross-Site-Scripting on reports_admin.php device name in Cacti
6.1
First published (updated )
Fedoraproject FedoraStored Cross-site Scripting on graphs.php data template formated name view in Cacti
6.1
First published (updated )
Fedoraproject FedoraStored Cross-site Scripting on data_sources.php device name view in Cacti
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fedoraproject FedoraStored Cross-site Scripting in reports_admin.php through Device-Name in 'select' input in Cacti
6.1
First published (updated )
Fedoraproject FedoraStored Cross-site Scripting in data_sources.php through Device-Name in 'select' input in Cacti
First published (updated )
Fedoraproject FedoraAuthenticated SQL injection vulnerability in graphs.php in Cacti
8.8
First published (updated )
Fedoraproject FedoraAuthenticated SQL injection vulnerability in reports_user.php in Cacti
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.