3 matches found
CVE-2025-67255
CVE-2025-67255 affects NagiosXI 2026R1.0.1 build 1762361101. The issue is due to dashboard parameters not being properly filtered, enabling an SQL Injection by any authenticated user. The CVSSv3.1 base score is 8.8 (HIGH) with NETWORK attack vector, LOW attack complexity, PRIVILEGES REQUIRED: LOW...
CVE-2025-67254
NagiosXI 2026R1.0.1 build 1762361101 is vulnerable to Directory Traversal in /admin/coreconfigsnapshots.php...
PT-2025-53775
Name of the Vulnerable Software and Affected Versions NagiosXI version 2026R1.0.1 build 1762361101 Description Dashboard parameters in the software do not have sufficient filtering, which allows authenticated users to exploit a SQL Injection issue. The vulnerability allows unauthorized access to...