Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Cvelist
Cvelistadded 2025/10/30 9:43 p.m.4 views

CVE-2013-10071 Nagios XI < 2012R1.6 Reflected XSS via Dashlet AJAX Load Functionality

Nagios XI versions prior to 2012R1.6 contain a reflected cross-site scripting XSS vulnerability in the dashboard dashlet AJAX load functionality. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's...

5.1CVSS0.00505EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/10/30 9:32 p.m.1 views

CVE-2013-10073 Nagios XI < 2012R1.6 Auto-Discovery Shell Command Injection

Nagios XI versions prior to 2012R1.6 contain a shell command injection vulnerability in the Auto-Discovery tool. User-controlled input is passed to a shell without adequate sanitation or argument quoting, allowing an authenticated user with access to discovery functionality to execute arbitrary...

8.7CVSS7.6AI score0.01939EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/10/30 12:0 a.m.3 views

PT-2025-44534

Name of the Vulnerable Software and Affected Versions Nagios XI versions prior to 2012R1.6 Description Nagios XI versions prior to 2012R1.6 contain an authorization flaw in the Auto-Discovery functionality. Users with read-only roles could access Auto-Discovery endpoints and pages that require...

7.2CVSS6.5AI score0.00122EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/10/30 12:0 a.m.1 views

PT-2025-44533

Name of the Vulnerable Software and Affected Versions Nagios XI versions prior to 2012R1.6 Description The software contains a reflected cross-site scripting XSS issue in the dashboard dashlet AJAX load functionality. Insufficient validation or escaping of user-supplied input could allow an...

6.1CVSS6AI score0.00505EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/10/30 12:0 a.m.2 views

PT-2025-44535

Name of the Vulnerable Software and Affected Versions Nagios XI versions prior to 2012R1.6 Description Nagios XI versions prior to 2012R1.6 contain a shell command injection issue in the Auto-Discovery tool. User-controlled input is passed to a shell without proper sanitization or argument quotin...

8.8CVSS7.8AI score0.01939EPSS
Exploits0References4
CNNVD
CNNVDadded 2025/10/30 12:0 a.m.1 views

Nagios XI 安全漏洞

Nagios XI is a suite of IT infrastructure monitoring solutions from the US-based Nagios. The solution supports monitoring and alerting of applications, services, operating systems, and more. A security vulnerability exists in Nagios XI versions prior to 2012R1.6, which stems from insufficient...

6.1CVSS6AI score0.00505EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2013/03/18 12:0 a.m.23 views

Nagios XI < 2012R1.6 Multiple Vulnerabilities

According to the self-reported version of Nagios XI, the remote host is affected by multiple vulnerabilities. The alertcloud component is vulnerable to a cross-site scripting attack and the autodiscovery module has a remote command execution vulnerability. %NASLMINLEVEL 70300 C Tenable Network...

5.3AI score
Exploits0References3
Rows per page
Query Builder