CVE-2010-2544
CVE-2010-2544
Cross-site scripting (XSS) vulnerability in utilities.php in Cacti before 0.8.7g, as used in Red Hat High Performance Computing (HPC) Solution and other products, allows remote attackers to inject arbitrary web script or HTML via the filter parameter.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 1
exploitdbwww.exploit-db.com/exploits/34504não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://cacti.net/release_notes_0_8_7g.phphttp://marc.info/?l=oss-security&m=127978954522586&w=2http://marc.info/?l=oss-security&m=128017203704299&w=2https://bugzilla.redhat.com/show_bug.cgi?id=459105http://secunia.com/advisories/41041https://exchange.xforce.ibmcloud.com/vulnerabilities/61226https://rhn.redhat.com/errata/RHSA-2010-0635.htmlhttp://svn.cacti.net/viewvc/cacti/branches/0.8.7/utilities.php?r1=6025&r2=6024&pathrev=6025http://svn.cacti.net/viewvc?view=rev&revision=6025http://www.mandriva.com/security/advisories?name=MDVSA-2010:160http://www.securityfocus.com/bid/42575http://www.vupen.com/english/advisories/2010/2132