Unrated severityNVD Advisory· Published Aug 22, 2023· Updated Oct 3, 2024
CVE-2022-48547
CVE-2022-48547
Description
A reflected cross-site scripting (XSS) vulnerability in Cacti 0.8.7g and earlier allows unauthenticated remote attackers to inject arbitrary web script or HTML in the "ref" parameter at auth_changepassword.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <=0.8.7g
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.