[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2020-25706":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":44,"aliases":62,"duplicate_of":9,"upstream":63,"downstream":64,"duplicates":73,"related":74,"reserved_at":9,"published_at":76,"modified_at":77,"state":78,"summary":79,"references_raw":87,"kevs":109,"epss":110,"epss_history":113,"metrics":372,"affected":388},"CVE-2020-25706","A cross-site scripting (XSS) vulnerability exists in templates_import.php (Cacti 1.2.13) due to Improper escaping of error message during template import preview in the xml_path field",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-79","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.","weakness","Stable","Base","High",[20,24,28,32,36,40],{"id":21,"name":22,"techniques":23},"CAPEC-209","XSS Using MIME Type Mismatch",[],{"id":25,"name":26,"techniques":27},"CAPEC-588","DOM-Based XSS",[],{"id":29,"name":30,"techniques":31},"CAPEC-591","Reflected XSS",[],{"id":33,"name":34,"techniques":35},"CAPEC-592","Stored XSS",[],{"id":37,"name":38,"techniques":39},"CAPEC-63","Cross-Site Scripting (XSS)",[],{"id":41,"name":42,"techniques":43},"CAPEC-85","AJAX Footprinting",[],[45,54],{"_key":46,"name":47,"source":48,"url":49,"maturity":50,"reliability_score":51,"verified":52,"type":9,"platforms":53,"requires_auth":9,"exploitdb":9,"metasploit":9},"GITHUB_CACTI_CACTI","Cacti","github","https://github.com/Cacti/cacti/issues/847","poc",0.3,false,[],{"_key":55,"name":56,"source":57,"url":58,"maturity":59,"reliability_score":60,"verified":52,"type":9,"platforms":61,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_F67FECDE9D40B3C3","Exploit Reference (bugzilla.redhat.com)","reference","https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-25706","unknown",0.2,[],[],[],[65,67,69,71],{"_key":66},"UBUNTU-CVE-2020-25706",{"_key":68},"OPENSUSE-SU-2024:10670-1",{"_key":70},"DLA-3252-1",{"_key":72},"DEBIAN-CVE-2020-25706",[],[75],{"_key":68},"2020-11-12T00:00:00.000Z","2024-08-04T15:40:36.597Z","Modified",{"cisa_kev":52,"cisa_ransomware":52,"cisa_vendor":9,"epss_severity":80,"epss_score":81,"severity":82,"severity_score":83,"severity_version":84,"severity_source":85,"severity_vector":86,"severity_status":78},"low",0.01458,"medium",6.1,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",[88,96,101,104],{"url":89,"sources":90,"tags":92},"https://github.com/Cacti/cacti/issues/3723",[91,85],"cve.org",[93,94,95],"Exploit","Issue Tracking","Third Party Advisory",{"url":97,"sources":98,"tags":99},"https://github.com/Cacti/cacti/commit/39458efcd5286d50e6b7f905fedcdc1059354e6e",[91,85],[100,95],"Patch",{"url":58,"sources":102,"tags":103},[91,85],[93,94,100,95],{"url":105,"sources":106,"tags":107},"https://lists.debian.org/debian-lts-announce/2022/12/msg00039.html",[91,85],[108,95],"Mailing List",[],{"date":111,"score":81,"percentile":112},"2026-06-04",0.81177,[114,118,121,124,127,130,133,136,139,142,145,148,150,153,155,159,162,165,167,170,173,176,179,181,183,185,188,190,193,196,199,202,205,208,210,213,216,219,222,225,228,231,233,236,239,242,245,248,251,254,256,259,262,264,267,270,272,275,278,281,284,288,292,295,298,301,304,307,310,313,316,318,321,324,327,330,333,336,339,342,345,348,351,354,356,359,362,364,366,369],{"date":115,"score":116,"percentile":117},"2025-11-04",0.0214,0.83625,{"date":119,"score":116,"percentile":120},"2025-11-05",0.83629,{"date":122,"score":116,"percentile":123},"2025-11-06",0.83633,{"date":125,"score":116,"percentile":126},"2025-11-07",0.8364,{"date":128,"score":116,"percentile":129},"2025-11-08",0.83644,{"date":131,"score":116,"percentile":132},"2025-11-09",0.83639,{"date":134,"score":116,"percentile":135},"2025-11-10",0.83634,{"date":137,"score":116,"percentile":138},"2025-11-11",0.83638,{"date":140,"score":116,"percentile":141},"2025-11-12",0.8365,{"date":143,"score":116,"percentile":144},"2025-11-13",0.83657,{"date":146,"score":116,"percentile":147},"2025-11-14",0.83658,{"date":149,"score":116,"percentile":141},"2025-11-15",{"date":151,"score":116,"percentile":152},"2025-11-16",0.83652,{"date":154,"score":116,"percentile":141},"2025-11-17",{"date":156,"score":157,"percentile":158},"2025-11-18",0.01381,0.78627,{"date":160,"score":157,"percentile":161},"2025-11-19",0.78635,{"date":163,"score":157,"percentile":164},"2025-11-20",0.78642,{"date":166,"score":116,"percentile":147},"2025-11-21",{"date":168,"score":116,"percentile":169},"2025-11-22",0.83655,{"date":171,"score":116,"percentile":172},"2025-11-23",0.83648,{"date":174,"score":116,"percentile":175},"2025-11-24",0.83649,{"date":177,"score":116,"percentile":178},"2025-11-25",0.83645,{"date":180,"score":116,"percentile":129},"2025-11-26",{"date":182,"score":116,"percentile":129},"2025-11-27",{"date":184,"score":116,"percentile":123},"2025-11-28",{"date":186,"score":116,"percentile":187},"2025-11-29",0.83654,{"date":189,"score":116,"percentile":144},"2025-11-30",{"date":191,"score":116,"percentile":192},"2025-12-01",0.8373,{"date":194,"score":116,"percentile":195},"2025-12-02",0.83732,{"date":197,"score":116,"percentile":198},"2025-12-03",0.83734,{"date":200,"score":116,"percentile":201},"2025-12-04",0.8366,{"date":203,"score":116,"percentile":204},"2025-12-05",0.83666,{"date":206,"score":116,"percentile":207},"2025-12-06",0.83663,{"date":209,"score":116,"percentile":187},"2025-12-07",{"date":211,"score":116,"percentile":212},"2025-12-08",0.83656,{"date":214,"score":116,"percentile":215},"2025-12-09",0.83669,{"date":217,"score":116,"percentile":218},"2025-12-10",0.8369,{"date":220,"score":116,"percentile":221},"2025-12-11",0.83703,{"date":223,"score":116,"percentile":224},"2025-12-12",0.83712,{"date":226,"score":116,"percentile":227},"2025-12-13",0.83706,{"date":229,"score":116,"percentile":230},"2025-12-14",0.83705,{"date":232,"score":116,"percentile":230},"2025-12-15",{"date":234,"score":116,"percentile":235},"2025-12-16",0.83713,{"date":237,"score":116,"percentile":238},"2025-12-17",0.8372,{"date":240,"score":116,"percentile":241},"2025-12-18",0.83727,{"date":243,"score":116,"percentile":244},"2025-12-19",0.83731,{"date":246,"score":116,"percentile":247},"2025-12-20",0.83726,{"date":249,"score":116,"percentile":250},"2025-12-21",0.83725,{"date":252,"score":116,"percentile":253},"2025-12-22",0.83721,{"date":255,"score":116,"percentile":247},"2025-12-23",{"date":257,"score":116,"percentile":258},"2025-12-24",0.83736,{"date":260,"score":116,"percentile":261},"2025-12-25",0.83751,{"date":263,"score":116,"percentile":261},"2025-12-26",{"date":265,"score":116,"percentile":266},"2025-12-27",0.83795,{"date":268,"score":116,"percentile":269},"2025-12-28",0.83737,{"date":271,"score":116,"percentile":198},"2025-12-29",{"date":273,"score":116,"percentile":274},"2025-12-30",0.8374,{"date":276,"score":116,"percentile":277},"2025-12-31",0.83753,{"date":279,"score":116,"percentile":280},"2026-01-01",0.83823,{"date":282,"score":116,"percentile":283},"2026-01-02",0.83821,{"date":285,"score":286,"percentile":287},"2026-01-03",0.01845,0.82585,{"date":289,"score":290,"percentile":291},"2026-01-04",0.01582,0.81131,{"date":293,"score":290,"percentile":294},"2026-01-05",0.81126,{"date":296,"score":290,"percentile":297},"2026-01-06",0.8113,{"date":299,"score":290,"percentile":300},"2026-01-07",0.81132,{"date":302,"score":290,"percentile":303},"2026-01-08",0.81142,{"date":305,"score":290,"percentile":306},"2026-01-09",0.81143,{"date":308,"score":290,"percentile":309},"2026-01-10",0.81144,{"date":311,"score":290,"percentile":312},"2026-01-11",0.81137,{"date":314,"score":290,"percentile":315},"2026-01-12",0.81128,{"date":317,"score":290,"percentile":294},"2026-01-13",{"date":319,"score":81,"percentile":320},"2026-01-14",0.8041,{"date":322,"score":81,"percentile":323},"2026-01-15",0.80409,{"date":325,"score":81,"percentile":326},"2026-01-16",0.80418,{"date":328,"score":81,"percentile":329},"2026-01-17",0.80428,{"date":331,"score":81,"percentile":332},"2026-01-18",0.80419,{"date":334,"score":81,"percentile":335},"2026-01-19",0.80413,{"date":337,"score":81,"percentile":338},"2026-01-20",0.80414,{"date":340,"score":81,"percentile":341},"2026-01-21",0.80422,{"date":343,"score":81,"percentile":344},"2026-01-22",0.8043,{"date":346,"score":81,"percentile":347},"2026-01-23",0.80456,{"date":349,"score":81,"percentile":350},"2026-01-24",0.80466,{"date":352,"score":81,"percentile":353},"2026-01-25",0.80457,{"date":355,"score":81,"percentile":347},"2026-01-26",{"date":357,"score":81,"percentile":358},"2026-01-27",0.8046,{"date":360,"score":81,"percentile":361},"2026-01-28",0.80459,{"date":363,"score":81,"percentile":353},"2026-01-29",{"date":365,"score":81,"percentile":353},"2026-01-30",{"date":367,"score":81,"percentile":368},"2026-01-31",0.80464,{"date":370,"score":81,"percentile":371},"2026-02-01",0.80551,[373,380],{"source":91,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":374,"cvss_v4_0":9},{"baseScore":375,"baseSeverity":376,"vectorString":377,"impactScore":378,"exploitabilityScore":379},5.4,"MEDIUM","CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",4.2,7.2,{"source":85,"cvss_v2_0":381,"cvss_v3_0":9,"cvss_v3_1":386,"cvss_v4_0":9},{"baseScore":382,"baseSeverity":9,"vectorString":383,"impactScore":384,"exploitabilityScore":385},4.3,"AV:N/AC:M/Au:N/C:N/I:P/A:N",2.9,8.6,{"baseScore":83,"baseSeverity":376,"vectorString":86,"impactScore":387,"exploitabilityScore":379},4.5,[389,394,402],{"ecosystem":9,"name":47,"vendor":9,"product":47,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":390},[391],{"version":392,"is_range":52,"range_type":393,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.2.13","cpe",{"ecosystem":9,"name":395,"vendor":396,"product":397,"cpe_part":398,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":399},"debian linux","debian","debian_linux","o",[400],{"version":401,"is_range":52,"range_type":393,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0",{"ecosystem":9,"name":403,"vendor":404,"product":403,"cpe_part":405,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":406},"cacti","the cacti group, inc.","a",[407],{"version":392,"is_range":52,"range_type":91,"version_start":392,"version_start_type":408,"version_end":392,"version_end_type":408,"fixed_in":9},"including"]