CVE-2017-11691

Published: Jul 27, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in auth_profile.php in Cacti 1.1.13 allows remote attackers to inject arbitrary web script or HTML via specially crafted HTTP Referer headers.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/Cacti/cacti/commit/104090aeead4aa433bf1f18cd6d52dcfeb71236c

x_refsource_CONFIRM

https://github.com/Cacti/cacti/issues/867

x_refsource_CONFIRM

100022

vdb-entry

x_refsource_BID

1038982

vdb-entry

x_refsource_SECTRACK

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-11691

Description

Affected Products

References