CVE-2017-12066

MEDIUM

Cacti <1.1.16 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in aggregate_graphs.php in Cacti before 1.1.16 allows remote authenticated users to inject arbitrary web script or HTML via specially crafted HTTP Referer headers, related to the $cancel_url variable. NOTE: this vulnerability exists because of an incomplete fix (lack of the htmlspecialchars ENT_QUOTES flag) for CVE-2017-11163.

References (3)

[Release Notes, Vendor Advisory] https://cacti.net/release_notes.php?version=1.1.16

[Issue Tracking, Patch, Third Party Advisory] https://github.com/Cacti/cacti/commit/bd0e586f6f46d814930226f1516a194e7e72293e

View Patch ZIP pw:eip

[Issue Tracking, Patch, Third Party Advisory] https://github.com/Cacti/cacti/issues/877

Scores

CVSS v3 5.4

EPSS 0.0024

EPSS Percentile 47.1%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Details

CWE

CWE-79

Status published

Products (2)

cacti/cacti < 1.1.15

n/a/n/a

Published Aug 01, 2017

Tracked Since Feb 18, 2026