1796208 – (CVE-2020-7106) CVE-2020-7106 cacti: XSS due to lack of escaping on some pages

Bug 1796208 (CVE-2020-7106) - CVE-2020-7106 cacti: XSS due to lack of escaping on some pages

Summary: CVE-2020-7106 cacti: XSS due to lack of escaping on some pages

Keywords:
Status:	CLOSED NOTABUG
Alias:	CVE-2020-7106
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	1796209
Blocks:
TreeView+	depends on / blocked

Reported:	2020-01-29 21:04 UTC by Guilherme de Almeida Suckevicz
Modified:	2021-10-28 05:24 UTC (History)
CC List:	3 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2021-10-28 05:24:13 UTC

Attachments	(Terms of Use)

Description Guilherme de Almeida Suckevicz 2020-01-29 21:04:12 UTC

Cacti 1.2.8 has stored XSS in data_sources.php, color_templates_item.php, graphs.php, graph_items.php, lib/api_automation.php, user_admin.php, and user_group_admin.php, as demonstrated by the description parameter in data_sources.php (a raw string from the database that is displayed by $header to trigger the XSS).

Reference:
https://github.com/Cacti/cacti/issues/3191

Comment 1 Guilherme de Almeida Suckevicz 2020-01-29 21:11:20 UTC

Created cacti tracking bugs for this issue:

Affects: epel-6 [bug 1796209]

Note You need to log in before you can comment on or make changes to this bug.