Medium severity6.1NVD Advisory· Published Oct 11, 2017· Updated Jun 17, 2026
CVE-2017-15194
CVE-2017-15194
Description
include/global_session.php in Cacti 1.1.25 has XSS related to (1) the URI or (2) the refresh page.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:cacti:cacti:1.1.25:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:cacti:cacti:1.1.25:*:*:*:*:*:*:*
- (no CPE)range: = 1.1.25
Patches
Vulnerability mechanics
References
3- github.com/Cacti/cacti/commit/93f661d8adcfa6618b11522cdab30e97bada33fdnvdPatchThird Party Advisory
- github.com/Cacti/cacti/issues/1010nvdExploitIssue TrackingPatchThird Party Advisory
- www.securitytracker.com/id/1039569nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.