CVE-2024-43362

CVE-2024-43362

Name

CVE-2024-43362

Description

Cacti is an open source performance and fault management framework. The `fileurl` parameter is not properly sanitized when saving external links in `links.php` . Morever, the said fileurl is placed in some html code which is passed to the `print` function in `link.php` and `index.php`, finally leading to stored XSS. Users with the privilege to create external links can manipulate the `fileurl` parameter in the http post request while creating external links to perform stored XSS attacks. The vulnerability known as XSS (Cross-Site Scripting) occurs when an application allows untrusted user input to be displayed on a web page without proper validation or escaping. This issue has been addressed in release version 1.2.28. All users are advised to upgrade. There are no known workarounds for this issue.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
CONFIRM	https://github.com/Cacti/cacti/security/advisories/GHSA-wh9c-v56x-v77c
af854a3a-2127-422b-91ae-364da2661108	https://lists.debian.org/debian-lts-announce/2025/02/msg00010.html

Type

URI

CONFIRM

https://github.com/Cacti/cacti/security/advisories/GHSA-wh9c-v56x-v77c

af854a3a-2127-422b-91ae-364da2661108

https://lists.debian.org/debian-lts-announce/2025/02/msg00010.html

Match rules

CPE URI	Source package	Min version	Max version
	cacti	>= 0	< 1.2.28
`cpe:2.3:a:cacti:cacti::::::::`	cacti	>= 0	< 1.2.28
`cpe:2.3:a:cacti:cacti::::::::`	cacti	>= None	< 1.2.28

CPE URI

Source package

Min version

Max version

cacti

>= 0

< 1.2.28

cpe:2.3:a:cacti:cacti:*:*:*:*:*:*:*:*

cacti

>= 0

< 1.2.28

cpe:2.3:a:cacti:cacti:*:*:*:*:*:*:*:*

cacti

>= None

< 1.2.28

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
cacti	edge-community	1.2.29-r0	None	fixed
cacti	edge-community	1.2.28-r0	Jeff Bilyk <jbilyk@gmail.com>	fixed
cacti	edge-community	1.2.27-r0	Jeff Bilyk <jbilyk@gmail.com>	possibly vulnerable
cacti	edge-community	1.2.26-r0	Jeff Bilyk <jbilyk@gmail.com>	possibly vulnerable
cacti	edge-community	1.2.25-r0	Jeff Bilyk <jbilyk@gmail.com>	possibly vulnerable
cacti	edge-community	1.2.20-r0	Jeff Bilyk <jbilyk@gmail.com>	possibly vulnerable
cacti	edge-community	1.2.17-r0	Jeff Bilyk <jbilyk@gmail.com>	possibly vulnerable
cacti	edge-community	1.2.13-r0	None	possibly vulnerable
cacti	edge-community	1.2.8-r0	None	possibly vulnerable
cacti	3.22-community	1.2.29-r0	None	fixed
cacti	3.22-community	1.2.28-r0	None	fixed
cacti	3.22-community	1.2.27-r0	None	possibly vulnerable
cacti	3.22-community	1.2.26-r0	None	possibly vulnerable
cacti	3.22-community	1.2.25-r0	None	possibly vulnerable
cacti	3.22-community	1.2.20-r0	None	possibly vulnerable
cacti	3.22-community	1.2.17-r0	None	possibly vulnerable
cacti	3.22-community	1.2.13-r0	None	possibly vulnerable
cacti	3.22-community	1.2.8-r0	None	possibly vulnerable
cacti	3.21-community	1.2.29-r0	None	fixed
cacti	3.21-community	1.2.28-r0	None	fixed
cacti	3.20-community	1.2.28-r0	Jeff Bilyk <jbilyk@gmail.com>	fixed
cacti	3.20-community	1.2.27-r0	Jeff Bilyk <jbilyk@gmail.com>	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

References

Match rules

Vulnerable and fixed packages