CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

193 matches found

NVD•added 2025/11/03 10:15 p.m.•1 views

CVE-2021-47698

Nagios XI versions prior to 5.8.7 using embedded Nagios Core are vulnerable to cross-site scripting XSS via the Core UI’s Views URL handling escapestring. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a...

5.4CVSS0.00501EPSS

Exploits0References2

RedhatCVE•added 2025/10/31 10:7 p.m.•2 views

CVE-2021-47691

The Core Config Manager CCM in Nagios XI versions prior to CCM 3.1.1 / Nagios XI 5.8.2 contains multiple cross-site scripting XSS vulnerabilities via the Services page affecting the configname and servicedescription fields. Insufficient validation or escaping of user-supplied input may allow an...

5.4CVSS6.4AI score0.00501EPSS

Exploits0References1

RedhatCVE•added 2025/10/31 10:7 p.m.•4 views

CVE-2021-47693

The Core Config Manager CCM in Nagios XI versions prior to CCM 3.1.3 / Nagios XI 5.8.5 contains a SQL injection vulnerability in the search text handling. Unsanitized user-supplied input was incorporated into SQL queries used by configuration object editors, allowing authenticated users to inject...

8.8CVSS7.4AI score0.01476EPSS

Exploits0References1

EUVD•added 2025/10/31 12:30 a.m.•2 views

EUVD-2021-34707

5.1CVSS5.8AI score0.00501EPSS

Exploits0References3

EUVD•added 2025/10/31 12:30 a.m.•1 views

EUVD-2021-34706

The Core Config Manager CCM in Nagios XI versions prior to CCM 3.1.0 / Nagios XI 5.8.0 contais a cross-site scripting XSS vulnerability in the Templates pages, specifically in the UI logic that renders and handles the Active/Actions buttons. Insufficient validation or escaping of user-supplied...

5.1CVSS5.5AI score0.00766EPSS

Exploits0References3

EUVD•added 2025/10/31 12:30 a.m.•1 views

EUVD-2021-34710

8.7CVSS6.9AI score0.01476EPSS

Exploits0References3

EUVD•added 2025/10/31 12:30 a.m.•1 views

EUVD-2020-30812

The Core Config Manager CCM in Nagios XI versions prior to CCM 3.0.8 / Nagios XI 5.7.5 contains multiple cross-site scripting XSS vulnerabilities in the overlay UI elements and the Notification/Check Period pages. Insufficient validation or escaping of user-supplied input may allow an attacker to...

5.1CVSS5.8AI score0.00501EPSS

Exploits0References3

OSV•added 2025/10/30 10:15 p.m.•1 views

CVE-2021-47689

5.4CVSS5.9AI score

Exploits0References2

CVE•added 2025/10/30 9:36 p.m.•6 views

CVE-2021-47691

The Nagios XI Core Config Manager (CCM) is affected by cross-site scripting (XSS) vulnerabilities in CCM prior to 3.1.1 and Nagios XI prior to 5.8.2. The issue arises from insufficient validation/escaping of user-supplied input in the Services page, specifically the config_name and service_descri...

5.4CVSS5.9AI score0.00501EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2025/10/30 9:33 p.m.•2 views

CVE-2021-47693 Nagios XI < 5.8.5 Core Config Manager (CCM) SQL Injection via Improper Escaping in Search Text

8.7CVSS7AI score0.01476EPSS

Exploits0References2

Positive Technologies•added 2025/10/30 12:0 a.m.•2 views

PT-2025-44473

Name of the Vulnerable Software and Affected Versions Nagios XI versions prior to CCM 3.1.0 Nagios XI versions prior to 5.8.0 Description The Core Config Manager CCM in Nagios XI contains a cross-site scripting XSS issue in the Templates pages. The problem is related to the UI logic that renders...

5.4CVSS6AI score0.00766EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2017-5815

Malware in sbrugna...

7.8CVSS7.7AI score0.00094EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-4384

Malware in sbrugna...

6.3CVSS6.7AI score0.00041EPSS

Exploits0References9