CVE-2023-49086 | Cacti up to 1.2.25 Incomplete Fix CVE-2023-39360 graphs_new.php cross site scripting

Posted by Angelo Barbosa | Dec 22, 2023 | CVE

A vulnerability was found in Cacti up to 1.2.25. It has been rated as problematic. Affected by this issue is some unknown functionality of the file graphs_new.php of the component Incomplete Fix CVE-2023-39360. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2023-49086. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-49086 | Cacti up to 1.2.25 Incomplete Fix CVE-2023-39360 graphs_new.php cross site scripting

Related Posts

CVE-2024-30666 | ROS Melodic Morenia C++ Component buffer overflow

CVE-2024-4733 | ShiftController Employee Shift Scheduling Plugin up to 4.9.57 on WordPress code injection

CVE-2024-36676 | BookStack up to 23.10.2 Notification Email denial of service (Issue 4993)

CVE-2024-20270 | Cisco BroadWorks Application Delivery Platform Web-based Management Interface cross site scripting (cisco-sa-broadworks-xss-6syj82Ju)