Cacti Cross-Site-Scripting Vulnerability Let Attacker Poison Database | allinfosecnews.com

Sept. 7, 2023, 11:20 a.m. | Eswar

Cyber Security News cybersecuritynews.com

A Stored Cross-Site Scripting (Stored XSS) vulnerability was recently discovered in Cacti that allows an authenticated user to poison the data stored in Cacti’s database. Moreover, administrative accounts can view this poisoned data, and JS code executes on the victim’s browser when viewed. Cacti is a web-based open-source network monitoring, fault, and configuration management tool that […]

The post Cacti Cross-Site-Scripting Vulnerability Let Attacker Poison Database appeared first on Cyber Security News.

accounts attacker browser cacti code configuration cross-site data database monitoring network network monitoring scripting stored xss victim vulnerabilities vulnerability web xss

More from cybersecuritynews.com / Cyber Security News

Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories) 2 hours ago | cybersecuritynews.com

attacks breaches changing counter +19

ELLIO and ntop partnership to boost high-speed network traffic monitoring with real-time data on opportunistic … 1 day, 21 hours ago | cybersecuritynews.com

applications attacks botnets commercial +17

Windows-based AllaKore Malware Abuses Azure Cloud for C2 Infrastructure 1 day, 22 hours ago | cybersecuritynews.com

accounts azure azure cloud bank +27

Hackers Impersonating As Fake Toll Payment Processor Across The U.S. 1 day, 22 hours ago | cybersecuritynews.com

cyber security cybersecurity e-zpass e-zpass fraud +21

Hackers Compromised 600,000 SOHO Routers Within 72 Hours For Botnet 1 day, 22 hours ago | cybersecuritynews.com

72 hours attack attacks botnet +26

Telegram Know For Secure Messaging, Now Became A Tool For Cybercriminals 2 days ago | cybersecuritynews.com

abuse creators cybercriminals cyber security +12

Microsoft Observed Huge-Surge In Attacks Targeting Internet-Exposed OT Devices In WWS 2 days, 2 hours ago | cybersecuritynews.com

attacks cyberattacks cyberav3ngers cyber security +24

RedTail Cryptominer Exploiting Palo Alto Networks Firewall Zero-day Flaw 2 days, 7 hours ago | cybersecuritynews.com

alto arbitrary code attackers code +33

BBC Data Breach: Hackers Access Cloud-Based Storage Service 2 days, 8 hours ago | cybersecuritynews.com

access bbc breach cloud +25

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia

View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)

View on infosec-jobs.com