VYPR
Unrated severityOSV Advisory· Published Apr 8, 2019· Updated Aug 4, 2024

CVE-2019-11025

CVE-2019-11025

Description

In clearFilter() in utilities.php in Cacti before 1.2.3, no escaping occurs before printing out the value of the SNMP community string (SNMP Options) in the View poller cache, leading to XSS.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Cacti (software)/CactiOSV2 versions
    release/1.0.0, release/1.0.1, release/1.0.2, …+ 1 more
    • (no CPE)range: release/1.0.0, release/1.0.1, release/1.0.2, …
    • (no CPE)range: <1.2.3

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.