VDB
DEBIAN-CVE-2018-20724
DEBIAN-CVE-2018-20724
PUBLISHED
CVSS 4.800000190734863 MEDIUM
A cross-site scripting (XSS) vulnerability exists in pollers.php in Cacti before 1.2.0 due to lack of escaping of unintended characters in the Website Hostname for Data Collectors.
Risk Scores
CVSS 3.0
4.800000190734863
CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | cacti | 0, 0, 0 |
| Debian:14 | cacti | 0 |
| Debian:12 | cacti | 0, 0, 0 |
| Debian:13 | cacti | 0, 0, 0 |
Timeline
- Jan 16, 2019 CVE Published
- May 10, 2026 CVE Updated