CVE Reference: CVE-2010-2544

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2010-2544

Description:
Cross-site scripting (XSS) vulnerability in utilities.php in Cacti before 0.8.7g, as used in Red Hat High Performance Computing (HPC) Solution and other products, allows remote attackers to inject arbitrary web script or HTML via the filter parameter.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/61226

SAID
  Secunia Advisory: SA41041

REDHAT

MLIST
  http://marc.info/?l=oss-security&m=128017203704299&w=2
  http://marc.info/?l=oss-security&m=127978954522586&w=2

MANDRIVA
  http://www.mandriva.com/security/advisories?name=MDVSA-2010:160

CONFIRM
  http://svn.cacti.net/viewvc?view=rev&revision=6025
  http://svn.cacti.net/viewvc/cacti/branches/0.8.7/utilities.php?r1=6025&r2=6024&pathrev=6025
  http://cacti.net/release_notes_0_8_7g.php

BID
  42575


Return to the previous page.