Candidate: CVE-2015-2967
PublicDate: 2015-07-10 15:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2967
 http://www.cacti.net/release_notes_0_8_8d.php
 http://jvndb.jvn.jp/jvndb/JVNDB-2015-000094
 http://jvn.jp/en/jp/JVN78187936/index.html
Description:
 Cross-site scripting (XSS) vulnerability in settings.php in Cacti before
 0.8.8d allows remote attackers to inject arbitrary web script or HTML via
 unspecified vectors.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_cacti:
upstream_cacti: needs-triage
precise_cacti: ignored (reached end-of-life)
precise/esm_cacti: DNE (precise was needed)
trusty_cacti: released (0.8.8b+dfsg-5ubuntu0.1)
trusty/esm_cacti: DNE (trusty was released [0.8.8b+dfsg-5ubuntu0.1])
utopic_cacti: ignored (reached end-of-life)
vivid_cacti: released (0.8.8b+dfsg-8+deb8u2build0.15.04.1)
vivid/stable-phone-overlay_cacti: DNE
vivid/ubuntu-core_cacti: DNE
wily_cacti: not-affected (0.8.8f+ds1-1)
xenial_cacti: not-affected (0.8.8f+ds1-1)
yakkety_cacti: not-affected (0.8.8f+ds1-1)
zesty_cacti: not-affected (0.8.8f+ds1-1)
devel_cacti: not-affected (0.8.8f+ds1-1)