oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

cacti: CVE-2017-12927: XSS vulnerability in spikekill.php via method parameter

From: Salvatore Bonaccorso <carnil () debian org>
Date: Fri, 18 Aug 2017 23:04:37 +0200
Hi

MITRE has assigned CVE-2017-12927 for the following cross-site
scripting vulnerablity in cacti in spikekill.php via the method
parameter:

https://github.com/Cacti/cacti/issues/907

with upstream fix in

https://github.com/Cacti/cacti/commit/a032ce0be6a4ea47862c594e40a619ac8de1ef99

Regards,
Salvatore
Previous By Date Next
Previous By Thread Next

Current thread: