PT-2025-44532

Name of the Vulnerable Software and Affected Versions Nagios XI versions prior to 2012R1.3 Description Nagios XI is affected by a SQL injection issue in the legacy Core Configuration Manager CCM interface. Authenticated users can manipulate SQL queries by providing crafted input to specific CCM...

CVE-2002-1959

Nagios 1.0b1 through 1.0b3 allows remote attackers to execute arbitrary commands via shell metacharacters in plugin output...

UBUNTU-CVE-2020-13977

Nagios 4.4.5 allows an attacker, who already has administrative access to change the "URL for JSON CGIs" configuration setting, to modify the Alert Histogram and Trends code via crafted versions of the archivejson.cgi, objectjson.cgi, and statusjson.cgi files. NOTE: this vulnerability has been...

UBUNTU-CVE-2011-1523

Cross-site scripting XSS vulnerability in statusmap.c in statusmap.cgi in Nagios 3.2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the layer parameter...

phpNagios Version Detection

This script finds the running phpNagios version. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...