3 matches found
Nagios XI SQL Injection Vulnerability
Nagios XI is a suite of IT infrastructure monitoring solutions from the US-based Nagios. The solution supports monitoring and alerting of applications, services, operating systems, and more. A security vulnerability exists in Nagios XI versions 5.11.0 through 5.11.1, which originates from a...
The vulnerability of the ajaxhelper.php component of the Nagios Fusion software, which is used for visualizing the operational status of IT infrastructure, allows a hacker to gain access to user passwords.
The vulnerability of the ajaxhelper.php component of the Nagios Fusion software, which is used for visualizing the operational status of IT infrastructure, relates to the insecure storage of confidential information. Exploiting this vulnerability could allow an attacker, operating remotely, to ga...
CVE-2020-28911
Incorrect Access Control in Nagios Fusion 4.1.8 and earlier allows low-privileged authenticated users to extract passwords used to manage fused servers via the testserver command in ajaxhelper.php...