AVG-365

Package cacti
Status Fixed
Severity Medium
Type cross-site scripting
Affected 1.1.13-1
Fixed 1.1.14-1
Current 1.1.33-1 [community]
Ticket None
Created Thu Jul 27 08:39:37 2017
Issue Severity Remote Type Description
CVE-2017-11691 Medium Yes Cross-site scripting
A cross-site scripting vulnerability has been found in Cacti <= 1.1.13, in the user profile management page (auth_profile.php), allowing inject arbitrary...
Date Advisory Package Description
27 Jul 2017 ASA-201707-30 cacti cross-site scripting