Download
| Alert*
CVE-2017-12927
A cross-site scripting vulnerability exists in Cacti 1.1.17 in the method parameter in spikekill.php. CVE-2017-12978 lib/html.php in Cacti before 1.1.18 has XSS via the title field of an external link added by an authenticated user. |