CVE-2023-49086|Cacti is a robust performance and... - VULHUB开源网络安全威胁库

Cacti is a robust performance and... CVE-2023-49086

- AV AC AU C I A

发布： 2023-12-22

修订： 2024-03-18

Cacti is a robust performance and fault management framework and a frontend to RRDTool - a Time Series Database (TSDB). A vulnerability in versions prior to 1.2.27 bypasses an earlier fix for CVE-2023-39360, therefore leading to a DOM XSS attack. Exploitation of the vulnerability is possible for an authorized user. The vulnerable component is the `graphs_new.php`. The impact of the vulnerability is execution of arbitrary JavaScript code in the attacked user's browser. This issue has been patched in version 1.2.27.

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有1条受影响产品信息

您还没有登录，登录后可查看更多

添加资源
收藏资源
问题反馈

贡献用户

暂无贡献用户

VULHUB ™

Cacti is a robust performance and... CVE-2023-49086

漏洞利用/PoC

受影响的平台与产品

贡献用户

相关漏洞清单查看更多>

Cacti is a robust performance and... CVE-2023-49086

漏洞利用/PoC

受影响的平台与产品

贡献用户

相关漏洞清单 查看更多>

相关漏洞清单查看更多>