8 matches found
CVE-2018-25119
Nagios Fusion versions prior to 4.1.5 are vulnerable to cross-site scripting XSS via the "fusionwindow" parameter. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's browser...
EUVD-2018-21610
Nagios Fusion versions prior to 4.1.5 are vulnerable to cross-site scripting XSS via the "fusionwindow" parameter. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's browser...
CVE-2018-25119
Nagios Fusion versions prior to 4.1.5 are vulnerable to cross-site scripting XSS via the "fusionwindow" parameter. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's browser...
CVE-2018-25119 Nagios Fusion < 4.1.5 XSS via fusionwindow Parameter
Nagios Fusion versions prior to 4.1.5 are vulnerable to cross-site scripting XSS via the "fusionwindow" parameter. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's browser...
CVE-2018-25119
CVE-2018-25119 affects Nagios Fusion versions prior to 4.1.5. The issue is a cross-site scripting (XSS) vulnerability due to insufficient validation/escaping of the fusionwindow parameter, allowing attacker-supplied script to run in a victim’s browser. Affected software is disclosed across multip...
CVE-2018-25119 Nagios Fusion < 4.1.5 XSS via fusionwindow Parameter
Nagios Fusion versions prior to 4.1.5 are vulnerable to cross-site scripting XSS via the "fusionwindow" parameter. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's browser...
Nagios Fusion 安全漏洞
Nagios Fusion is a centralized monitoring and visualization platform from the US-based Nagios Corporation. A security vulnerability exists in Nagios Fusion versions prior to 4.1.5 that stems from insufficient validation or escaping of user input for the fusionwindow parameter, which could lead to...
PT-2025-44543
Nagios Fusion versions prior to 4.1.5 are vulnerable to cross-site scripting XSS via the "fusionwindow" parameter. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's browser...