CVE-2017-10970
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2017-10970
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-10970.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2017-10970
- Downstream
- Related
- Published
- 2017-07-06T11:29:00Z
- Modified
- 2025-09-19T08:44:55.587046Z
- Severity
-
- 5.4 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Cross-site scripting (XSS) vulnerability in link.php in Cacti 1.1.12 allows remote anonymous users to inject arbitrary web script or HTML via the id parameter, related to the diehtmlinputerror function in lib/htmlvalidate.php.
- References