| Max CVSS | 3.5 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-20725 | 3.5 |
A cross-site scripting (XSS) vulnerability exists in graph_templates.php in Cacti before 1.2.0 due to lack of escaping of unintended characters in the Graph Vertical Label.
|
01-03-2020 - 22:15 | 16-01-2019 - 16:29 | |
| CVE-2018-20723 | 3.5 |
A cross-site scripting (XSS) vulnerability exists in color_templates.php in Cacti before 1.2.0 due to lack of escaping of unintended characters in the Name field for a Color.
|
01-03-2020 - 22:15 | 16-01-2019 - 16:29 | |
| CVE-2018-20726 | 3.5 |
A cross-site scripting (XSS) vulnerability exists in host.php (via tree.php) in Cacti before 1.2.0 due to lack of escaping of unintended characters in the Website Hostname field for Devices.
|
01-03-2020 - 22:15 | 16-01-2019 - 16:29 |