CVE-2021-47699 Nagios XI < 5.8.7 XSS in Audit Log via Send to NLS Form

Nagios XI versions prior to 5.8.7 are vulnerable to cross-site scripting XSS via the Audit Log page’s Send to NLS form. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's browser...

CVE-2021-47699

Nagios XI prior to 5.8.7 is vulnerable to cross-site scripting (XSS) via the Audit Log page’s Send to NLS form. The root cause is insufficient validation/escaping of user input, allowing injected scripts to run in a victim’s browser. Red Hat and other sources confirm affected versions and the sam...

PT-2023-1882 · Unknown · Ruggedcom Crossbow

Name of the Vulnerable Software and Affected Versions: RUGGEDCOM CROSSBOW versions prior to V5.3 Description: A vulnerability has been identified in the audit log form of RUGGEDCOM CROSSBOW, which is vulnerable to SQL injection. This could allow authenticated remote attackers to execute arbitrary...