cve-2008-0783
Vulnerability from cvelistv5
Published
2008-02-14 22:00
Modified
2024-08-07 07:54
Severity ?
Summary
Multiple cross-site scripting (XSS) vulnerabilities in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k allow remote attackers to inject arbitrary web script or HTML via (1) the view_type parameter to graph.php; (2) the filter parameter to graph_view.php; (3) the action parameter to the draw_navigation_text function in lib/functions.php, reachable through index.php (aka the login page) or data_input.php; or (4) the login_username parameter to index.php.
References
cve@mitre.orghttp://bugs.cacti.net/view.php?id=1245
cve@mitre.orghttp://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.html
cve@mitre.orghttp://secunia.com/advisories/28872Vendor Advisory
cve@mitre.orghttp://secunia.com/advisories/28976Vendor Advisory
cve@mitre.orghttp://secunia.com/advisories/29242Vendor Advisory
cve@mitre.orghttp://secunia.com/advisories/29274
cve@mitre.orghttp://secunia.com/advisories/30045Vendor Advisory
cve@mitre.orghttp://security.gentoo.org/glsa/glsa-200803-18.xml
cve@mitre.orghttp://securityreason.com/securityalert/3657
cve@mitre.orghttp://www.cacti.net/release_notes_0_8_7b.phpPatch
cve@mitre.orghttp://www.debian.org/security/2008/dsa-1569
cve@mitre.orghttp://www.mandriva.com/security/advisories?name=MDVSA-2008:052
cve@mitre.orghttp://www.securityfocus.com/archive/1/488013/100/0/threaded
cve@mitre.orghttp://www.securityfocus.com/archive/1/488018/100/0/threaded
cve@mitre.orghttp://www.securityfocus.com/bid/27749Exploit, Patch
cve@mitre.orghttp://www.securityfocus.com/bid/34991
cve@mitre.orghttp://www.securitytracker.com/id?1019414
cve@mitre.orghttp://www.vupen.com/english/advisories/2008/0540Vendor Advisory
cve@mitre.orghttps://bugzilla.redhat.com/show_bug.cgi?id=432758
cve@mitre.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/50575
cve@mitre.orghttps://www.redhat.com/archives/fedora-package-announce/2008-February/msg00570.html
cve@mitre.orghttps://www.redhat.com/archives/fedora-package-announce/2008-February/msg00593.html
af854a3a-2127-422b-91ae-364da2661108http://bugs.cacti.net/view.php?id=1245
af854a3a-2127-422b-91ae-364da2661108http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.html
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/28872Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/28976Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/29242Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/29274
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/30045Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://security.gentoo.org/glsa/glsa-200803-18.xml
af854a3a-2127-422b-91ae-364da2661108http://securityreason.com/securityalert/3657
af854a3a-2127-422b-91ae-364da2661108http://www.cacti.net/release_notes_0_8_7b.phpPatch
af854a3a-2127-422b-91ae-364da2661108http://www.debian.org/security/2008/dsa-1569
af854a3a-2127-422b-91ae-364da2661108http://www.mandriva.com/security/advisories?name=MDVSA-2008:052
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/488013/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/488018/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/27749Exploit, Patch
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/34991
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id?1019414
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2008/0540Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://bugzilla.redhat.com/show_bug.cgi?id=432758
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/50575
af854a3a-2127-422b-91ae-364da2661108https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00570.html
af854a3a-2127-422b-91ae-364da2661108https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00593.html
Impacted products
Vendor Product Version
Show details on NVD website


{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-07T07:54:23.350Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "FEDORA-2008-1737",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_FEDORA",
                     "x_transferred",
                  ],
                  url: "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00593.html",
               },
               {
                  name: "cacti-datainput-xss(50575)",
                  tags: [
                     "vdb-entry",
                     "x_refsource_XF",
                     "x_transferred",
                  ],
                  url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/50575",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "http://bugs.cacti.net/view.php?id=1245",
               },
               {
                  name: "29242",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/29242",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://bugzilla.redhat.com/show_bug.cgi?id=432758",
               },
               {
                  name: "3657",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SREASON",
                     "x_transferred",
                  ],
                  url: "http://securityreason.com/securityalert/3657",
               },
               {
                  name: "SUSE-SR:2008:005",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_SUSE",
                     "x_transferred",
                  ],
                  url: "http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.html",
               },
               {
                  name: "GLSA-200803-18",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_GENTOO",
                     "x_transferred",
                  ],
                  url: "http://security.gentoo.org/glsa/glsa-200803-18.xml",
               },
               {
                  name: "28872",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/28872",
               },
               {
                  name: "MDVSA-2008:052",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_MANDRIVA",
                     "x_transferred",
                  ],
                  url: "http://www.mandriva.com/security/advisories?name=MDVSA-2008:052",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "http://www.cacti.net/release_notes_0_8_7b.php",
               },
               {
                  name: "30045",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/30045",
               },
               {
                  name: "29274",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/29274",
               },
               {
                  name: "20080212 cacti -- Multiple security vulnerabilities have been discovered",
                  tags: [
                     "mailing-list",
                     "x_refsource_BUGTRAQ",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/archive/1/488013/100/0/threaded",
               },
               {
                  name: "ADV-2008-0540",
                  tags: [
                     "vdb-entry",
                     "x_refsource_VUPEN",
                     "x_transferred",
                  ],
                  url: "http://www.vupen.com/english/advisories/2008/0540",
               },
               {
                  name: "27749",
                  tags: [
                     "vdb-entry",
                     "x_refsource_BID",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/bid/27749",
               },
               {
                  name: "DSA-1569",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_DEBIAN",
                     "x_transferred",
                  ],
                  url: "http://www.debian.org/security/2008/dsa-1569",
               },
               {
                  name: "28976",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/28976",
               },
               {
                  name: "FEDORA-2008-1699",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_FEDORA",
                     "x_transferred",
                  ],
                  url: "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00570.html",
               },
               {
                  name: "1019414",
                  tags: [
                     "vdb-entry",
                     "x_refsource_SECTRACK",
                     "x_transferred",
                  ],
                  url: "http://www.securitytracker.com/id?1019414",
               },
               {
                  name: "20080212 Cacti 0.8.7a Multiple Vulnerabilities",
                  tags: [
                     "mailing-list",
                     "x_refsource_BUGTRAQ",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/archive/1/488018/100/0/threaded",
               },
               {
                  name: "34991",
                  tags: [
                     "vdb-entry",
                     "x_refsource_BID",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/bid/34991",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "n/a",
               vendor: "n/a",
               versions: [
                  {
                     status: "affected",
                     version: "n/a",
                  },
               ],
            },
         ],
         datePublic: "2008-02-12T00:00:00",
         descriptions: [
            {
               lang: "en",
               value: "Multiple cross-site scripting (XSS) vulnerabilities in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k allow remote attackers to inject arbitrary web script or HTML via (1) the view_type parameter to graph.php; (2) the filter parameter to graph_view.php; (3) the action parameter to the draw_navigation_text function in lib/functions.php, reachable through index.php (aka the login page) or data_input.php; or (4) the login_username parameter to index.php.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "n/a",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2018-10-15T20:57:01",
            orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            shortName: "mitre",
         },
         references: [
            {
               name: "FEDORA-2008-1737",
               tags: [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
               ],
               url: "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00593.html",
            },
            {
               name: "cacti-datainput-xss(50575)",
               tags: [
                  "vdb-entry",
                  "x_refsource_XF",
               ],
               url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/50575",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "http://bugs.cacti.net/view.php?id=1245",
            },
            {
               name: "29242",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/29242",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=432758",
            },
            {
               name: "3657",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SREASON",
               ],
               url: "http://securityreason.com/securityalert/3657",
            },
            {
               name: "SUSE-SR:2008:005",
               tags: [
                  "vendor-advisory",
                  "x_refsource_SUSE",
               ],
               url: "http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.html",
            },
            {
               name: "GLSA-200803-18",
               tags: [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
               ],
               url: "http://security.gentoo.org/glsa/glsa-200803-18.xml",
            },
            {
               name: "28872",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/28872",
            },
            {
               name: "MDVSA-2008:052",
               tags: [
                  "vendor-advisory",
                  "x_refsource_MANDRIVA",
               ],
               url: "http://www.mandriva.com/security/advisories?name=MDVSA-2008:052",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "http://www.cacti.net/release_notes_0_8_7b.php",
            },
            {
               name: "30045",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/30045",
            },
            {
               name: "29274",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/29274",
            },
            {
               name: "20080212 cacti -- Multiple security vulnerabilities have been discovered",
               tags: [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
               ],
               url: "http://www.securityfocus.com/archive/1/488013/100/0/threaded",
            },
            {
               name: "ADV-2008-0540",
               tags: [
                  "vdb-entry",
                  "x_refsource_VUPEN",
               ],
               url: "http://www.vupen.com/english/advisories/2008/0540",
            },
            {
               name: "27749",
               tags: [
                  "vdb-entry",
                  "x_refsource_BID",
               ],
               url: "http://www.securityfocus.com/bid/27749",
            },
            {
               name: "DSA-1569",
               tags: [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
               ],
               url: "http://www.debian.org/security/2008/dsa-1569",
            },
            {
               name: "28976",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/28976",
            },
            {
               name: "FEDORA-2008-1699",
               tags: [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
               ],
               url: "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00570.html",
            },
            {
               name: "1019414",
               tags: [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
               ],
               url: "http://www.securitytracker.com/id?1019414",
            },
            {
               name: "20080212 Cacti 0.8.7a Multiple Vulnerabilities",
               tags: [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
               ],
               url: "http://www.securityfocus.com/archive/1/488018/100/0/threaded",
            },
            {
               name: "34991",
               tags: [
                  "vdb-entry",
                  "x_refsource_BID",
               ],
               url: "http://www.securityfocus.com/bid/34991",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "cve@mitre.org",
               ID: "CVE-2008-0783",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "n/a",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "n/a",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "n/a",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Multiple cross-site scripting (XSS) vulnerabilities in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k allow remote attackers to inject arbitrary web script or HTML via (1) the view_type parameter to graph.php; (2) the filter parameter to graph_view.php; (3) the action parameter to the draw_navigation_text function in lib/functions.php, reachable through index.php (aka the login page) or data_input.php; or (4) the login_username parameter to index.php.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "n/a",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "FEDORA-2008-1737",
                     refsource: "FEDORA",
                     url: "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00593.html",
                  },
                  {
                     name: "cacti-datainput-xss(50575)",
                     refsource: "XF",
                     url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/50575",
                  },
                  {
                     name: "http://bugs.cacti.net/view.php?id=1245",
                     refsource: "CONFIRM",
                     url: "http://bugs.cacti.net/view.php?id=1245",
                  },
                  {
                     name: "29242",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/29242",
                  },
                  {
                     name: "https://bugzilla.redhat.com/show_bug.cgi?id=432758",
                     refsource: "CONFIRM",
                     url: "https://bugzilla.redhat.com/show_bug.cgi?id=432758",
                  },
                  {
                     name: "3657",
                     refsource: "SREASON",
                     url: "http://securityreason.com/securityalert/3657",
                  },
                  {
                     name: "SUSE-SR:2008:005",
                     refsource: "SUSE",
                     url: "http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.html",
                  },
                  {
                     name: "GLSA-200803-18",
                     refsource: "GENTOO",
                     url: "http://security.gentoo.org/glsa/glsa-200803-18.xml",
                  },
                  {
                     name: "28872",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/28872",
                  },
                  {
                     name: "MDVSA-2008:052",
                     refsource: "MANDRIVA",
                     url: "http://www.mandriva.com/security/advisories?name=MDVSA-2008:052",
                  },
                  {
                     name: "http://www.cacti.net/release_notes_0_8_7b.php",
                     refsource: "CONFIRM",
                     url: "http://www.cacti.net/release_notes_0_8_7b.php",
                  },
                  {
                     name: "30045",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/30045",
                  },
                  {
                     name: "29274",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/29274",
                  },
                  {
                     name: "20080212 cacti -- Multiple security vulnerabilities have been discovered",
                     refsource: "BUGTRAQ",
                     url: "http://www.securityfocus.com/archive/1/488013/100/0/threaded",
                  },
                  {
                     name: "ADV-2008-0540",
                     refsource: "VUPEN",
                     url: "http://www.vupen.com/english/advisories/2008/0540",
                  },
                  {
                     name: "27749",
                     refsource: "BID",
                     url: "http://www.securityfocus.com/bid/27749",
                  },
                  {
                     name: "DSA-1569",
                     refsource: "DEBIAN",
                     url: "http://www.debian.org/security/2008/dsa-1569",
                  },
                  {
                     name: "28976",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/28976",
                  },
                  {
                     name: "FEDORA-2008-1699",
                     refsource: "FEDORA",
                     url: "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00570.html",
                  },
                  {
                     name: "1019414",
                     refsource: "SECTRACK",
                     url: "http://www.securitytracker.com/id?1019414",
                  },
                  {
                     name: "20080212 Cacti 0.8.7a Multiple Vulnerabilities",
                     refsource: "BUGTRAQ",
                     url: "http://www.securityfocus.com/archive/1/488018/100/0/threaded",
                  },
                  {
                     name: "34991",
                     refsource: "BID",
                     url: "http://www.securityfocus.com/bid/34991",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
      assignerShortName: "mitre",
      cveId: "CVE-2008-0783",
      datePublished: "2008-02-14T22:00:00",
      dateReserved: "2008-02-14T00:00:00",
      dateUpdated: "2024-08-07T07:54:23.350Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
   "vulnerability-lookup:meta": {
      nvd: "{\"cve\":{\"id\":\"CVE-2008-0783\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2008-02-14T23:00:00.000\",\"lastModified\":\"2024-11-21T00:42:54.017\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Multiple cross-site scripting (XSS) vulnerabilities in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k allow remote attackers to inject arbitrary web script or HTML via (1) the view_type parameter to graph.php; (2) the filter parameter to graph_view.php; (3) the action parameter to the draw_navigation_text function in lib/functions.php, reachable through index.php (aka the login page) or data_input.php; or (4) the login_username parameter to index.php.\"},{\"lang\":\"es\",\"value\":\"Múltiples vulnerabilidades de tipo cross-site scripting (XSS) en Cacti versión 0.8.7 anterior a 0.8.7b y versión 0.8.6 anterior a 0.8.6k, permiten a los atacantes remotos inyectar script web o HTML arbitrario por medio de (1) el parámetro view_type en el archivo graph.php; (2) el parámetro filter en el archivo graph_view.php; (3) el parámetro action en la función draw_navigation_text en el archivo lib/functions.php, accesible por medio del archivo index.php (también conocido como la página de inicio de sesión) o el archivo data_input.php; o (4) el parámetro login_username en el archivo index.php.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:P/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cacti:cacti:0.6.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B4611FB4-7B8D-4DCA-9BFC-87585E16129B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cacti:cacti:0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B44E0187-3577-4770-8D76-10F64F6400B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cacti:cacti:0.8.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3E6282B-B403-45AD-B1EC-82257EEA1A43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cacti:cacti:0.8.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0936E4B2-D89C-44B3-9082-77FA369BA280\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cacti:cacti:0.8.2a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A1257552-9117-45EE-B77C-00879E1FC67B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cacti:cacti:0.8.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA380DC2-2392-413E-AC7A-F8B854EA3108\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cacti:cacti:0.8.3a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B530A944-0A71-4F88-AAE6-3844364FB098\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cacti:cacti:0.8.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"62C554AE-AE7A-48B1-A1FF-E8E7691EA344\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cacti:cacti:0.8.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"25541421-4A87-43BF-86D7-E1377CE3C859\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cacti:cacti:0.8.5a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"301E2B13-D410-4B26-9A47-F90343F47C18\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cacti:cacti:0.8.6c:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE910AB1-7D04-4743-9963-BBA191EE4078\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cacti:cacti:0.8.6f:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB41A3C5-D03A-4B1F-B841-A9F5021A59F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cacti:cacti:0.8.6i:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8D62D429-7BDE-47DE-B466-0732DAC3F70E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cacti:cacti:0.8.6j:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6893355E-2F64-416D-9AED-898E6D1123F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cacti:cacti:0.8.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"191A8F3B-EDFA-47AA-B7B1-95B4C05AFD7A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cacti:cacti:0.8.7a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7A8C1715-DCA1-4C83-B817-9366172CFC1D\"}]}]}],\"references\":[{\"url\":\"http://bugs.cacti.net/view.php?id=1245\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/28872\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/28976\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/29242\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/29274\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/30045\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://security.gentoo.org/glsa/glsa-200803-18.xml\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://securityreason.com/securityalert/3657\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.cacti.net/release_notes_0_8_7b.php\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.debian.org/security/2008/dsa-1569\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2008:052\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/488013/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/488018/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/27749\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Patch\"]},{\"url\":\"http://www.securityfocus.com/bid/34991\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securitytracker.com/id?1019414\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2008/0540\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=432758\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/50575\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00570.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00593.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://bugs.cacti.net/view.php?id=1245\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/28872\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/28976\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/29242\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/29274\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/30045\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://security.gentoo.org/glsa/glsa-200803-18.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://securityreason.com/securityalert/3657\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.cacti.net/release_notes_0_8_7b.php\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.debian.org/security/2008/dsa-1569\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2008:052\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/488013/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/488018/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/27749\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Patch\"]},{\"url\":\"http://www.securityfocus.com/bid/34991\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id?1019414\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2008/0540\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=432758\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/50575\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00570.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00593.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
   },
}


Log in or create an account to share your comment.

Security Advisory comment format.

This schema specifies the format of a comment related to a security advisory.

UUIDv4 of the comment
UUIDv4 of the vulnerability lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).



Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.