Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2015-8010

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in the Classic-UI with the CSV export link and pagination feature in Icinga before 1.14 allows remote attackers to inject...

6.1CVSS6.3AI score0.01486EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/10/22 12:0 a.m.37 views

openSUSE Security Update : icinga (openSUSE-2018-1206)

This update for icinga fixes the following issues : Update to 1.14.0 - CVE-2015-8010: Fixed XSS in the icinga classic UI boo952777 - CVE-2016-8641 / CVE-2016-10089: fixed a possible symlink attack for files/dirs created by root boo1011630 and boo1018047 - CVE-2016-0726: removed the pre-configured...

9.8CVSS6.2AI score0.02263EPSS
Exploits5References8
OpenVAS
OpenVAS
added 2018/10/20 12:0 a.m.36 views

openSUSE: Security Advisory for icinga (openSUSE-SU-2018:3258-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.1AI score0.02263EPSS
Exploits5References2
OPENSUSE Linux
OPENSUSE Linux
added 2018/10/19 6:40 p.m.218 views

Security update for icinga (moderate)

This update for icinga fixes the following issues: Update to 1.14.0 - CVE-2015-8010: Fixed XSS in the icinga classic UI boo952777 - CVE-2016-8641 / CVE-2016-10089: fixed a possible symlink attack for files/dirs created by root boo1011630 and boo1018047 - CVE-2016-0726: removed the pre-configured...

7.5CVSS3.3AI score0.02263EPSS
Exploits5References4
UbuntuCve
UbuntuCve
added 2017/03/27 5:59 p.m.29 views

CVE-2015-8010

Cross-site scripting XSS vulnerability in the Classic-UI with the CSV export link and pagination feature in Icinga before 1.14 allows remote attackers to inject arbitrary web script or HTML via the query string to cgi-bin/status.cgi...

6.1CVSS6.7AI score0.01486EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2017/03/27 5:0 p.m.28 views

CVE-2015-8010

Removed by vendor...

6.1CVSS6.6AI score0.01486EPSS
Exploits0
Cvelist
Cvelist
added 2017/03/27 5:0 p.m.31 views

CVE-2015-8010

Cross-site scripting XSS vulnerability in the Classic-UI with the CSV export link and pagination feature in Icinga before 1.14 allows remote attackers to inject arbitrary web script or HTML via the query string to cgi-bin/status.cgi...

6.1AI score0.01486EPSS
Exploits0References5
CVE
CVE
added 2017/03/27 5:0 p.m.78 views

CVE-2015-8010

The CVE-2015-8010 issue is a Cross-Site Scripting (XSS) vulnerability in Icinga’s Classic-UI, exploitable via the CSV export link and pagination on cgi-bin/status.cgi. Affected software is Icinga prior to 1.14; the vulnerability is triggered by unvalidated query string input, allowing remote atta...

6.1CVSS6.2AI score0.01486EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/01/17 12:0 a.m.59 views

openSUSE Security Update : icinga (openSUSE-2017-100)

This update for icinga includes various upstream fixes and the following security security fixes : - icinga was updated to version 1.14.0 - the classic-UI was vulnerable to a cross site scripting attack CVE-2015-8010, boo952777 - A user with nagios privileges could have gained root privileges by...

7.8CVSS6AI score0.04885EPSS
Exploits9References4
Rows per page
Query Builder