Bugzilla – Bug 1214519
VUL-0: CVE-2022-41444: cacti: Cross Site Scripting (XSS) vulnerability via crafted POST request to graphs_new.php.
Last modified: 2023-08-23 09:43:10 UTC
CVE-2022-41444 Cross Site Scripting (XSS) vulnerability in Cacti 1.2.21 via crafted POST request to graphs_new.php. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-41444 https://www.cve.org/CVERecord?id=CVE-2022-41444 https://gist.github.com/enferas/9079535112e4f4ff2c1d2ce1c099d4c2
likely: https://github.com/Cacti/cacti/issues/4834 https://github.com/Cacti/cacti/commit/8e7bc5d76a6d247628299e64a60591af514530f0
fixed in the shipped versions, closing as invalid