Lucene search
K

6 matches found

CNVD
CNVD
added 2018/05/04 12:0 a.m.2 views

Nagios XI Cross-Site Scripting Vulnerability (CNVD-2018-09053)

Nagios XI is a suite of IT infrastructure monitoring solutions from the US-based Nagios. The solution supports monitoring and alerting of applications, services, operating systems and more. A cross-site scripting vulnerability exists in the Schedule New Report page in Nagios XI version 5.4.13,...

5.4CVSS6.5AI score0.02707EPSS
Exploits1References1
NVD
NVD
added 2018/04/30 3:29 a.m.23 views

CVE-2018-10554

An issue was discovered in Nagios XI 5.4.13. There is XSS exploitable via CSRF in 1 the Schedule New Report screen via the hour, minute, or ampm parameter, related to components/scheduledreporting; 2 includes/components/xicore/downtime.php, related to the updatepages function; 3 the ajaxhelper.ph...

5.4CVSS5.3AI score0.02707EPSS
Exploits1References1
Prion
Prion
added 2018/04/30 3:29 a.m.20 views

Cross site request forgery (csrf)

An issue was discovered in Nagios XI 5.4.13. There is XSS exploitable via CSRF in 1 the Schedule New Report screen via the hour, minute, or ampm parameter, related to components/scheduledreporting; 2 includes/components/xicore/downtime.php, related to the updatepages function; 3 the ajaxhelper.ph...

3.5CVSS5.3AI score0.02707EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2018/04/30 3:29 a.m.3 views

CVE-2018-10554

An issue was discovered in Nagios XI 5.4.13. There is XSS exploitable via CSRF in 1 the Schedule New Report screen via the hour, minute, or ampm parameter, related to components/scheduledreporting; 2 includes/components/xicore/downtime.php, related to the updatepages function; 3 the ajaxhelper.ph...

5.4CVSS5.8AI score
Exploits0References1
Cvelist
Cvelist
added 2018/04/30 3:0 a.m.26 views

CVE-2018-10554

An issue was discovered in Nagios XI 5.4.13. There is XSS exploitable via CSRF in 1 the Schedule New Report screen via the hour, minute, or ampm parameter, related to components/scheduledreporting; 2 includes/components/xicore/downtime.php, related to the updatepages function; 3 the ajaxhelper.ph...

5.6AI score0.02707EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2012/11/19 12:0 a.m.27 views

Manage Engine Exchange Reporter 4.1 Cross Site Scripting

Title: ====== Manage Engine Exchange Reporter v4.1 - Multiple Web Vulnerabilites Date: ===== 2012-11-14 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=688 VL-ID: ===== 688 Common Vulnerability Scoring System: ==================================== 4.5 Introduction:...

7.4AI score
Exploits0
Rows per page
Query Builder