6 matches found
CVE-2020-15901
In Nagios XI before 5.7.3, ajaxhelper.php allows remote authenticated attackers to execute arbitrary commands via cmdsubsys...
Nagios XI ajaxhelper.php Command Injection (CVE-2020-15901)
A command injection vulnerability exists in Nagios XI. This vulnerability is due to insufficient validation of the input parameters in the ajaxhelper.php script...
CVE-2020-15901
In Nagios XI before 5.7.3, ajaxhelper.php allows remote authenticated attackers to execute arbitrary commands via cmdsubsys...
CVE-2020-15901
In Nagios XI before 5.7.3, ajaxhelper.php allows remote authenticated attackers to execute arbitrary commands via cmdsubsys...
CVE-2020-15901
This CVE affects Nagios XI prior to 5.7.3 where the ajaxhelper.php script is vulnerable to command injection via the cmdsubsys parameter. The root cause is insufficient validation/input handling in ajaxhelper.php, enabling remote authenticated attackers to execute arbitrary commands. The NVD note...
CVE-2020-15901
In Nagios XI before 5.7.3, ajaxhelper.php allows remote authenticated attackers to execute arbitrary commands via cmdsubsys...