CVE-2023-50569

Name
CVE-2023-50569
Description
Reflected Cross Site Scripting (XSS) vulnerability in Cacti v1.2.25, allows remote attackers to escalate privileges when uploading an xml template file via templates_import.php.
NVD Severity
unknown
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
cve@mitre.org https://gist.github.com/ISHGARD-2/a6b57de899f977e2af41780e7428b4bf
cve@mitre.org https://github.com/Cacti/cacti/security/advisories/GHSA-xwqc-7jc4-xm73

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:cacti:cacti:1.2.25:*:*:*:*:*:*:* cacti == None == 1.2.25

Vulnerable and fixed packages

Source package Branch Version Maintainer Status