Vulnerabilities
Vulnerable Software
Cacti:  Security Vulnerabilities
As an unauthenticated remote user, visit "http://<CACTI_SERVER>/auth_changepassword.php?ref=<script>alert(1)</script>" to successfully execute the JavaScript payload present in the "ref" URL parameter.
CVSS Score
6.1
EPSS Score
0.071
Published
2022-01-19
Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary HTML in the group_prefix field during the creation of a new group via "Copy" method at user_group_admin.php.
CVSS Score
5.4
EPSS Score
0.005
Published
2022-01-19
Cacti before 1.2.18 allows remote attackers to trigger XSS via template import for the midwinter theme.
CVSS Score
6.1
EPSS Score
0.016
Published
2021-11-14
Multiple Cross Site Scripting (XSS) vulneratiblities exist in Cacti 1.2.12 in (1) reports_admin.php, (2) data_queries.php, (3) data_input.php, (4) graph_templates.php, (5) graphs.php, (6) reports_admin.php, and (7) data_input.php.
CVSS Score
6.1
EPSS Score
0.024
Published
2021-08-27
An issue was discovered in Cacti 1.2.x through 1.2.16. A SQL injection vulnerability in data_debug.php allows remote authenticated attackers to execute arbitrary SQL commands via the site_id parameter. This can lead to remote code execution.
CVSS Score
8.8
EPSS Score
0.046
Published
2021-01-11
A cross-site scripting (XSS) vulnerability exists in templates_import.php (Cacti 1.2.13) due to Improper escaping of error message during template import preview in the xml_path field
CVSS Score
5.4
EPSS Score
0.028
Published
2020-11-12
A SQL injection issue in color.php in Cacti 1.2.12 allows an admin to inject SQL via the filter parameter. This can lead to remote command execution because the product accepts stacked queries.
CVSS Score
7.2
EPSS Score
0.863
Published
2020-06-17
In Cacti before 1.2.11, disabling a user account does not immediately invalidate any permissions granted to that account (e.g., permission to view logs).
CVSS Score
4.3
EPSS Score
0.01
Published
2020-05-20
In Cacti before 1.2.11, auth_profile.php?action=edit allows CSRF for an admin email change.
CVSS Score
6.5
EPSS Score
0.008
Published
2020-05-20
graph_realtime.php in Cacti 1.2.8 allows remote attackers to execute arbitrary OS commands via shell metacharacters in a cookie, if a guest user has the graph real-time privilege.
CVSS Score
8.8
EPSS Score
0.738
Published
2020-02-22


Contact Us

Shodan ® - All rights reserved