CVE-2015-3618
Nagios Business Process Intelligence (BPI) is affected by a Cross-site scripting (XSS) vulnerability in which an attacker can inject arbitrary web script or HTML via index.php. The issue affects BPI releases prior to 2.3.4. Root cause is an XSS flaw in the web interface, leading to potential impa...