CVE-2014-2326

EPSS 1.3%

cacti - security update

Published: 3/27/2014Modified: 5/27/2026

Description

Cross-site scripting (XSS) vulnerability in cdef.php in Cacti 0.8.7g, 0.8.8b, and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected packages (2)

Debian/cactifrom 0, < 0.8.8b+dfsg-4
Debian/cactifrom 0, < 0.8.8a+dfsg-5+deb7u3

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-2326