DEBIAN-CVE-2010-2543
Advisory lineage Upstream: 1 Downstream: 1
Upstream
Downstream
Published: 23 Aug 2010, 22:00
Last modified:27 May 2026, 11:00
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
23 Aug 2010, 22:00
Published
Vulnerability first disclosed
27 May 2026, 11:00
Last Modified
Vulnerability information updated
Description
Cross-site scripting (XSS) vulnerability in include/top_graph_header.php in Cacti before 0.8.7g allows remote attackers to inject arbitrary web script or HTML via the graph_start parameter to graph.php. NOTE: this vulnerability exists because of an incorrect fix for CVE-2009-4032.2.b.
Affected Systems
- debian•cacti
< 0.8.7g-1 | < 0.8.7g-1 | < 0.8.7g-1 | < 0.8.7g-1