Mandriva: 2013:228: cacti

LinuxSecurity.com: Multiple vulnerabilities has been discovered and corrected in cacti:
Multiple cross-site scripting (XSS) vulnerabilities in Cacti 0.8.8b
and earlier allow remote attackers to inject arbitrary web script or
HTML via (1) the step parameter to install/index.php or (2) the id
[More...]