52 matches found
CVE-2023-7315 Nagios XI < 5.11.3 XSS via Graph Explorer
Nagios XI versions prior to 5.11.3 are vulnerable to cross-site scripting XSS via the Graph Explorer component. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's browser...
CVE-2023-7315
Nagios XI prior to version 5.11.3 is affected by a cross-site scripting (XSS) vulnerability in the Graph Explorer component. The root cause is insufficient validation or escaping of user-supplied input, enabling an attacker to inject and execute arbitrary script in a victim’s browser. Supported b...
Nagios XI 安全漏洞
Nagios XI is a suite of IT infrastructure monitoring solutions from US-based Nagios. The solution supports monitoring and alerting of applications, services, operating systems, and more. A security vulnerability exists in Nagios XI versions prior to 5.11.3, which stems from a Graph Explorer...
Nagios XI 安全漏洞
Nagios XI is a suite of IT infrastructure monitoring solutions from the US-based Nagios. The solution supports monitoring and alerting of applications, services, operating systems, and more. A security vulnerability exists in Nagios XI versions prior to 2024R1, which stems from insufficient...
PT-2025-44554
Name of the Vulnerable Software and Affected Versions Nagios XI versions prior to 5.11.3 Description The software is susceptible to cross-site scripting XSS through the Graph Explorer component. Insufficient validation or escaping of user-supplied input could allow an attacker to inject and execu...
PT-2025-44555
Name of the Vulnerable Software and Affected Versions Nagios XI versions prior to 2024R1 Description The software is susceptible to cross-site scripting XSS through the Graph Explorer component. Insufficient validation or escaping of user-supplied input could allow an attacker to inject and execu...
EUVD-2012-6575
Malware in sbrugna...
CVE-2012-10029
Nagios XI Network Monitor prior to Graph Explorer component version 1.3 contains a command injection vulnerability in visApi.php. An authenticated user can inject system commands via unsanitized parameters such as host, resulting in remote code execution...
CVE-2012-10029
Nagios XI Network Monitor prior to Graph Explorer component version 1.3 contains a command injection vulnerability in visApi.php. An authenticated user can inject system commands via unsanitized parameters such as host, resulting in remote code execution...
CVE-2012-10029 Nagios XI Network Monitor Graph Explorer Component < 1.3 Authenticated Command Injection
Nagios XI Network Monitor prior to Graph Explorer component version 1.3 contains a command injection vulnerability in visApi.php. An authenticated user can inject system commands via unsanitized parameters such as host, resulting in remote code execution...
CVE-2012-10029 Nagios XI Network Monitor Graph Explorer Component < 1.3 Authenticated Command Injection
Nagios XI Network Monitor prior to Graph Explorer component version 1.3 contains a command injection vulnerability in visApi.php. An authenticated user can inject system commands via unsanitized parameters such as host, resulting in remote code execution...
CVE-2012-10029
Nagios XI Network Monitor with Graph Explorer component prior to version 1.3 is affected by an authenticated command-injection in visApi.php. The issue arises from unsanitized parameters (e.g., host), enabling remote code execution. Affected software/component: Nagios XI (Graph Explorer)
CVE-2012-10029
Nagios XI Network Monitor prior to Graph Explorer component version 1.3 contains a command injection vulnerability in visApi.php. An authenticated user can inject system commands via unsanitized parameters such as host, resulting in remote code execution...
CVE-2020-15902
Graph Explorer in Nagios XI before 5.7.2 allows XSS via the link url option...
Nagios XI Cross-Site Scripting Vulnerability (CNVD-2020-41877)
Nagios XI is a commercial monitoring solution built on Nagios Core, including dashboards, web-based configuration, advanced reporting and rich data visualization. A cross-site scripting vulnerability exists in Graph Explorer in Nagios XI versions prior to 5.7.2. An attacker can exploit this...
CVE-2020-15902
Graph Explorer in Nagios XI before 5.7.2 allows XSS via the link url option...
CVE-2020-15902
Graph Explorer in Nagios XI before 5.7.2 allows XSS via the link url option...
Design/Logic Flaw
Graph Explorer in Nagios XI before 5.7.2 allows XSS via the link url option...
CVE-2020-15902
Graph Explorer in Nagios XI before 5.7.2 allows XSS via the link url option...
PT-2020-14700 · Nagios · Nagios Xi
Name of the Vulnerable Software and Affected Versions: Nagios XI versions prior to 5.7.2 Description: The issue allows for XSS via the link url option in the Graph Explorer component. This could potentially lead to malicious script execution. Recommendations: For versions prior to 5.7.2, update t...