CVE-2021-47696
Nagios XI prior to 5.8.0 is vulnerable to cross-site scripting (XSS) via BPI config ID handling. The issue arises from insufficient input validation/escaping of user-supplied data in BPI config ID processing, enabling an attacker to inject script executed in a victim’s browser. Affected product: ...