3 matches found
Nagios Xi Cross-site Scripting (CVE-2018-15712)
A cross-site scripting vulnerability exists in Nagios Xi. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...
CVE-2018-15712
Nagios XI 5.5.6 allows reflected cross site scripting from remote unauthenticated attackers via the host parameter in apitool.php...
CVE-2018-15712
Nagios XI 5.5.6 is affected by CVE-2018-15712: a reflected cross-site scripting flaw exploitable by remote unauthenticated attackers via the host parameter in api_tool.php. The issue is documented across multiple feeds (NVD, CNVD, CVE listings, and advisories) with consistent description of remot...