Back to search
CVE-2010-1644
Published: Aug 23, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple cross-site scripting (XSS) vulnerabilities in Cacti before 0.8.7f, as used in Red Hat High Performance Computing (HPC) Solution and other products, allow remote attackers to inject arbitrary web script or HTML via the (1) hostname or (2) description parameter to host.php, or (3) the host_id parameter to data_sources.php.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2010-1203
vdb-entry
x_refsource_VUPEN
MDVSA-2010:160
vendor-advisory
x_refsource_MANDRIVA
https://bugzilla.redhat.com/show_bug.cgi?id=609093
x_refsource_CONFIRM
41041
third-party-advisory
x_refsource_SECUNIA
http://www.cacti.net/release_notes_0_8_7f.php
x_refsource_CONFIRM
RHSA-2010:0635
vendor-advisory
x_refsource_REDHAT
20100521 Cacti Multiple Parameter Cross Site Scripting Vulnerabilities
mailing-list
x_refsource_BUGTRAQ
ADV-2010-2132
vdb-entry
x_refsource_VUPEN
40332
vdb-entry
x_refsource_BID
http://svn.cacti.net/viewvc?view=rev&revision=5901
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now