Summary: Cross Site Scripting in parameter 'filter' to reproduce: /cacti/utilities.php?tail_lines=50&message_type=-1&go.x=10&go.y=9&refresh=20&reverse=1&filter=%22%3E%3Cscript%3Ealert%28document.cookie%29%3C%2Fscript%3E&page=1&action=view_logfile
Fix provided in cacti-0.8.7b-1.1.src.rpm sent to Nils
This isn't fixed in the current 0.8.7e-3.fc12, which means this isn't fixed in HPC or upstream. Reproduced with the above-mentioned reproducer.
De-obfuscated reproducer: /utilities.php?refresh=200&filter="><script>alert(document.cookie)</script>&action=view_logfile Confirmed with 0.8.7f-1.
Fixed upstream now: http://svn.cacti.net/viewvc/cacti/branches/0.8.7/utilities.php?r1=6025&r2=6024&pathrev=6025 Part of larger commit fixing other XSS issues: http://svn.cacti.net/viewvc?view=rev&revision=6025
0.8.7g released: http://cacti.net/release_notes_0_8_7g.php
This issue has been addressed in following products: Red Hat HPC Solution for RHEL 5 Via RHSA-2010:0635 https://rhn.redhat.com/errata/RHSA-2010-0635.html