CVE-2024-43365 | Cacti up to 1.2.27 HTTP POST Request links.php consolenewsection cross site scripting (GHSA-49f2-hwx9-qffr)
A vulnerability classified as problematic has been found in Cacti up to 1.2.27. This affects an unknown part of the file links.php of the component HTTP POST Request Handler. The manipulation of the argument consolenewsection leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2024-43365. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.