Cacti Cross Site Scripting and HTML Injection Vulnerabilities

Bugtraq ID: 42575
Class: Input Validation Error
CVE: CVE-2010-2544
CVE-2010-2545
Remote: Yes
Local: No
Published: Aug 19 2010 12:00AM
Updated: Jan 22 2014 08:32AM
Credit: <br>Marc Schoenefeld
Vulnerable: S.u.S.E. openSUSE 11.0
RedHat HPC Solution EL5 5
Red Hat Fedora 12
Red Hat Fedora 11
Planet Technology WSW-2401 0.8.6 h
Planet Technology WSW-2401 0.8.6 g
MandrakeSoft Enterprise Server 5 x86_64
MandrakeSoft Enterprise Server 5
MandrakeSoft Corporate Server 4.0 x86_64
MandrakeSoft Corporate Server 4.0
Gentoo Linux
Debian Linux 6.0 sparc
Debian Linux 6.0 s/390
Debian Linux 6.0 powerpc
Debian Linux 6.0 mips
Debian Linux 6.0 ia-64
Debian Linux 6.0 ia-32
Debian Linux 6.0 arm
Debian Linux 6.0 amd64
Cacti Cacti 0.8.7
Cacti Cacti 0.8.6 f
Cacti Cacti 0.8.6 c
Cacti Cacti 0.8.5 a
Cacti Cacti 0.8.5
Cacti Cacti 0.8.4
Cacti Cacti 0.8.3 a
Cacti Cacti 0.8.3
Cacti Cacti 0.8.2 a
Cacti Cacti 0.8.2
Cacti Cacti 0.8.1
Cacti Cacti 0.8
Cacti Cacti 0.8.7f
Cacti Cacti 0.8.7e
Cacti Cacti 0.8.7d
Cacti Cacti 0.8.7c
Cacti Cacti 0.8.7b
Cacti Cacti 0.8.7a
Cacti Cacti 0.8.6k
Cacti Cacti 0.8.6j
Cacti Cacti 0.8.6i
Not Vulnerable: Cacti Cacti 0.8.7g


 

Privacy Statement
Copyright 2010, SecurityFocus