Vulnerabilities > Cacti > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-12-22 CVE-2023-49088 Cross-site Scripting vulnerability in Cacti
Cacti is an open source operational monitoring and fault management framework.
network
low complexity
cacti CWE-79
4.8
4.8
2023-12-22 CVE-2023-50250 Cross-site Scripting vulnerability in Cacti 1.2.25
Cacti is an open source operational monitoring and fault management framework.
network
low complexity
cacti CWE-79
6.1
6.1
2023-12-22 CVE-2023-49086 Cross-site Scripting vulnerability in Cacti 1.2.25
Cacti is a robust performance and fault management framework and a frontend to RRDTool - a Time Series Database (TSDB).
network
low complexity
cacti CWE-79
5.4
5.4
2023-10-27 CVE-2023-46490 SQL Injection vulnerability in Cacti 1.2.25
SQL Injection vulnerability in Cacti v1.2.25 allows a remote attacker to obtain sensitive information via the form_actions() function in the managers.php function.
network
low complexity
cacti CWE-89
6.5
6.5
2023-09-06 CVE-2023-39511 Cross-site Scripting vulnerability in multiple products
Cacti is an open source operational monitoring and fault management framework.
network
low complexity
cacti fedoraproject CWE-79
4.8
4.8
2023-09-05 CVE-2023-30534 Deserialization of Untrusted Data vulnerability in multiple products
Cacti is an open source operational monitoring and fault management framework.
network
low complexity
cacti fedoraproject CWE-502
4.3
4.3
2023-09-05 CVE-2023-39364 Open Redirect vulnerability in multiple products
Cacti is an open source operational monitoring and fault management framework.
network
low complexity
cacti fedoraproject CWE-601
5.4
5.4
2023-09-05 CVE-2023-39365 SQL Injection vulnerability in multiple products
Cacti is an open source operational monitoring and fault management framework.
network
low complexity
cacti fedoraproject CWE-89
6.3
6.3
2023-09-05 CVE-2023-39516 Cross-site Scripting vulnerability in multiple products
Cacti is an open source operational monitoring and fault management framework.
network
low complexity
cacti fedoraproject CWE-79
4.8
4.8
2023-09-05 CVE-2023-39360 Cross-site Scripting vulnerability in multiple products
Cacti is an open source operational monitoring and fault management framework.Affected versions are subject to a Stored Cross-Site-Scripting (XSS) Vulnerability allows an authenticated user to poison data.
network
low complexity
cacti fedoraproject CWE-79
6.1
6.1