CVE-2024-29894 | Cacti up to 1.2.26 lib/functions.php raise_message_javascript title cross site scripting

Posted by Angelo Barbosa | May 13, 2024 | CVE

A vulnerability was found in Cacti up to 1.2.26. It has been rated as problematic. This issue affects the function raise_message_javascript in the library lib/functions.php. The manipulation of the argument title leads to cross site scripting.

The identification of this vulnerability is CVE-2024-29894. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-29894 | Cacti up to 1.2.26 lib/functions.php raise_message_javascript title cross site scripting

Related Posts

CVE-2024-34044 | O-RAN E2T I-Release buildPrometheusList peerInfo null pointer dereference

CVE-2024-42054 | Cervantes up to 0.5-alpha unrestricted upload

CVE-2024-42345 | Siemens SINEMA Remote Connect Server up to 3.2 SP1 Multi Factor Authentication session fixiation (ssa-869574)

CVE-2024-35223 | Dapr 1.13.0./1.13.1/1.13.2 information disclosure