During a bugtracking analysis I found several rxss vulnerabilities in different cacti parameter spread all over the application.
some are easily exploitable by get other by post request. For me it looks like input validation is seriously broken. feel free to contact me.
several xss vulnerabilities found
Moderators: Developers, Moderators
Re: several xss vulnerabilities found
Please file the bugs - http://www.cacti.net/bugs.php
| Scripts: Monitor processes | RFC1213 MIB | DOCSIS Stats | Dell PowerEdge | Speedfan | APC UPS | DOCSIS CMTS | 3ware | Motorola Canopy |
| Guides: Windows Install | [HOWTO] Debug Windows NTFS permission problems |
| Tools: Windows All-in-one Installer |
Who is online
Users browsing this forum: No registered users and 2 guests