Lucene search
+L

4 matches found

Packet Storm
Packet Storm
added 2020/08/28 12:0 a.m.501 views

Nagios Log Server 2.1.6 Cross Site Scripting

Exploit Title: Nagios Log Server 2.1.6 - Persistent Cross-Site Scripting Date: 2020-08-07 Vendor Homepage: https://www.nagios.com/products/nagios-log-server/ Vendor Changelog: https://www.nagios.com/downloads/nagios-log-server/change-log/ Exploit Author: Jinson Varghese Behanan @JinsonCyberSec...

3.5CVSS5.6AI score0.14414EPSS
Exploits3
Exploit DB
Exploit DB
added 2020/08/28 12:0 a.m.613 views

Nagios Log Server 2.1.6 - Persistent Cross-Site Scripting

Exploit Title: Nagios Log Server 2.1.6 - Persistent Cross-Site Scripting Date: 2020-08-07 Vendor Homepage: https://www.nagios.com/products/nagios-log-server/ Vendor Changelog: https://www.nagios.com/downloads/nagios-log-server/change-log/ Exploit Author: Jinson Varghese Behanan @JinsonCyberSec...

5.4CVSS5.6AI score0.14414EPSS
Exploits3
Cvelist
Cvelist
added 2020/07/30 2:34 p.m.29 views

CVE-2020-16157

A Stored XSS vulnerability exists in Nagios Log Server before 2.1.7 via the Notification Methods - Email Users menu...

5.2AI score0.14414EPSS
Exploits3References4
CVE
CVE
added 2020/07/30 2:34 p.m.84 views

CVE-2020-16157

Nagios Log Server (versions prior to 2.1.7) contains a Stored XSS vulnerability exploitable via the Notification Methods → Email Users menu. The root cause is insufficient input validation in the web application, allowing injected scripts to be stored and later executed in the admin/user context....

5.4CVSS5.1AI score0.14414EPSS
Exploits3References4Affected Software1
Rows per page
Query Builder