Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Description - There's no escape being done before printing out the value of Name in the Color Template page. Cacti version - v1.1.38
Name
Steps to reproduce -
Navigate to http://localhost:4040/cacti/color_templates.php?action=template_edit & add the below shared payload as the Name field value.
Payload - <img src=xss onerror=alert(1)>
<img src=xss onerror=alert(1)>
Visit http://localhost:4040/cacti/color_templates.php?action=template_edit, the payload will be triggered.
The text was updated successfully, but these errors were encountered:
Resolving Issues #2213, #2214, #2215 and Additional
80c2a88
Multiple XSS vectors associated with un-escaped strings. Introduce new function, audit all calls, remove inline styles for classes, some i18n missed.
Resolved. Thanks for testing!
Sorry, something went wrong.
No branches or pull requests
Description -
There's no escape being done before printing out the value of
Namein the Color Template page.Cacti version - v1.1.38
Steps to reproduce -
Navigate to http://localhost:4040/cacti/color_templates.php?action=template_edit & add the below shared payload as the
Namefield value.Payload -
<img src=xss onerror=alert(1)>Visit http://localhost:4040/cacti/color_templates.php?action=template_edit, the payload will be triggered.
The text was updated successfully, but these errors were encountered: