CVE-2020-23226
MEDIUM6.1EPSS 1.3%cacti - security update
發布日:2021/8/27修改日:2026/5/27
也稱為:DEBIAN-CVE-2020-23226
描述
Multiple Cross Site Scripting (XSS) vulneratiblities exist in Cacti 1.2.12 in (1) reports_admin.php, (2) data_queries.php, (3) data_input.php, (4) graph_templates.php, (5) graphs.php, (6) reports_admin.php, and (7) data_input.php.
受影響套件(2)
- Debian/cactifrom 0, < 1.2.13+ds1-1
- Debian/cactifrom 0, < 1.2.2+ds1-2+deb10u5
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.1 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |