7 matches found
CVE-2023-7321
Nagios Log Server versions prior to 2.1.14 are vulnerable to cross-site scripting XSS via the Snapshots Page. Untrusted log content was not safely encoded for the output context, allowing attacker-controlled data present in logs to execute script in the victim’s browser within the application...
CVE-2023-7321
Nagios Log Server versions prior to 2.1.14 are vulnerable to cross-site scripting XSS via the Snapshots Page. Untrusted log content was not safely encoded for the output context, allowing attacker-controlled data present in logs to execute script in the victim’s browser within the application...
CVE-2023-7321
Nagios Log Server versions prior to 2.1.14 are vulnerable to cross-site scripting XSS via the Snapshots Page. Untrusted log content was not safely encoded for the output context, allowing attacker-controlled data present in logs to execute script in the victim’s browser within the application...
CVE-2023-7321 Nagios Log Server < 2.1.14 XSS via Snapshots Page
Nagios Log Server versions prior to 2.1.14 are vulnerable to cross-site scripting XSS via the Snapshots Page. Untrusted log content was not safely encoded for the output context, allowing attacker-controlled data present in logs to execute script in the victim’s browser within the application...
CVE-2023-7321
Nagios Log Server
CVE-2023-7321 Nagios Log Server < 2.1.14 XSS via Snapshots Page
Nagios Log Server versions prior to 2.1.14 are vulnerable to cross-site scripting XSS via the Snapshots Page. Untrusted log content was not safely encoded for the output context, allowing attacker-controlled data present in logs to execute script in the victim’s browser within the application...
PT-2025-44493
Name of the Vulnerable Software and Affected Versions Nagios Log Server versions prior to 2.1.14 Description Nagios Log Server is affected by a cross-site scripting XSS issue through the Snapshots Page. The application does not properly encode untrusted log content before displaying it, which...