CVE-2025-13977

creationtimestamp| type| source ---|---|--- 2025-12-17 08:04:07+00:00| seen| https://gist.github.com/Darkcrai86/cba93a44fd67d5ba0e1972763c539567...

CVE-2019-13977

index.php in Ovidentia 8.4.3 has XSS via tg=groups, tg=maildoms=create=0=y, tg=delegat, tg=site=create, tg=site=4, tg=admdir=mdb=1, tg=notes=Create, tg=admfaqs=Add, or tg=admoc=addoc=...

CVE-2018-13977

CVE-2018-13977 is rejected/not used; this CVE ID does not represent an active vulnerability entry.

CVE-2018-13977

...

openSUSE Security Update : nagios (openSUSE-2021-715)

This update for nagios fixes the following issues : - new nagios-exec-start-post script to fix boo1003362 - fix nagiosupgrade.sh writing to log file in user controlled directory boo1182398. The nagiosupgrade.sh script writes the logfile directly below /var/log/ nagios was updated to 4.4.6 : - Fix...

Security update for nagios (important)

openSUSE Security Update: Security update for nagios Announcement ID: openSUSE-SU-2021:0735-1 Rating: important References: 1003362 1014637 1172794 1182398 989759 Cross-References: CVE-2016-6209 CVE-2020-13977 CVSS scores: CVE-2016-6209 NVD : 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N...

openSUSE: Security Advisory for nagios (openSUSE-SU-2021:0715-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

MGASA-2021-0209 Updated nagios packages fix a security vulnerability

Nagios 4.4.5 allows an attacker, who already has administrative access to change the "URL for JSON CGIs" configuration setting, to modify the Alert Histogram and Trends code via crafted versions of the archivejson.cgi, objectjson.cgi, and statusjson.cgi files CVE-2020-13977...

Fedora: Security Advisory for nagios (FEDORA-2021-b5e897a2e5)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2020-13977

Nagios 4.4.5 allows an attacker, who already has administrative access to change the "URL for JSON CGIs" configuration setting, to modify the Alert Histogram and Trends code via crafted versions of the archivejson.cgi, objectjson.cgi, and statusjson.cgi files. NOTE: this vulnerability has been...

CVE-2020-13977

Mode C: Nagios 4.4.5 is affected by CVE-2020-13977. An attacker with existing administrative access can modify the ArchiveJSON/StatusJSON/CGI logic by crafting archivejson.cgi, objectjson.cgi, and statusjson.cgi, enabling changes to the Alert Histogram and Trends code. Mageia advisory MGASA-2021-...

Ovidentia 8.4.3 - Cross-Site Scripting

------------------------------------------------------- Exploit Title: Ovidentia CMS - XSS Ovidentia 8.4.3 Description: The vulnerability permits any kind of XSS attacks. Reflected, DOM and Stored XSS. Date: 06/05/2019 CVE: CVE-2019-13977 Exploit Author: Fernando Pinheiro n3k00n3 Victor Flores...

Ovidentia 8.4.3 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications ------------------------------------------------------- Exploit Title: Ovidentia CMS - XSS Ovidentia 8.4.3 Description: The vulnerability permits any kind of XSS attacks. Reflected, DOM and Stored XSS. CVE: CVE-2019-13977 Exploit Author:...

Ovidentia 8.4.3 - Cross-Site Scripting

Ovidentia 8.4.3 - Cross-Site Scripting ------------------------------------------------------- Exploit Title: Ovidentia CMS - XSS Ovidentia 8.4.3 Description: The vulnerability permits any kind of XSS attacks. Reflected, DOM and Stored XSS. Date: 06/05/2019 CVE: CVE-2019-13977 Exploit Author:...

Ovidentia 8.4.3 Cross Site Scripting

------------------------------------------------------- Exploit Title: Ovidentia CMS - XSS Ovidentia 8.4.3 Description: The vulnerability permits any kind of XSS attacks. Reflected, DOM and Stored XSS. Date: 06/05/2019 CVE: CVE-2019-13977 Exploit Author: Fernando Pinheiro n3k00n3 Victor Flores...

CVE-2019-13977

CVE-2019-13977 affects Ovidentia 8.4.3: index.php is vulnerable to cross-site scripting via multiple tg parameters (e.g., tg=groups, tg=maildoms&idx=create, tg=site&item=4, etc.). Affected component is the index.php entry point of Ovidentia 8.4.3; root cause reported is lack of proper validation/...

CVE-2019-13977

index.php in Ovidentia 8.4.3 has XSS via tg=groups, tg=maildoms&idx=create&userid=0&bgrp=y, tg=delegat, tg=site&idx=create, tg=site&item=4, tg=admdir&idx=mdb&id=1, tg=notes&idx=Create, tg=admfaqs&idx=Add, or tg=admoc&idx=addoc&item=...

CVE-2017-13977

This CVE-2017-13977 entry is rejected/not used and does not represent an active vulnerability.