The vulnerability in the graphtemplates.php script of the Nagios XI monitoring tool allows a hacker to execute arbitrary code.

The vulnerability in the graphtemplates.php script of the Nagios XI monitoring tool is related to errors in information representation by the user interface when processing the dir parameter. Exploiting this vulnerability allows a malicious actor to gain access to read, modify, or delete data, or...

PT-2023-7761 · Nagios Xi · Nagios Xi

Name of the Vulnerable Software and Affected Versions: Nagios XI affected versions not specified Description: The issue is related to the graphtemplates.php script in Nagios XI, which is vulnerable due to errors in handling the dir parameter. This can allow a remote attacker to read, modify, or...

CVE-2021-3273

Nagios XI below 5.7 is affected by code injection in the /nagiosxi/admin/graphtemplates.php component. To exploit this vulnerability, someone must have an admin user account in Nagios XI's web system...

Nagios XI 代码注入漏洞

Nagios XI is a suite of IT infrastructure monitoring solutions from the US-based Nagios. The solution supports monitoring and alerting of applications, services, operating systems and more. A code injection vulnerability exists in Nagios XI versions prior to 5.7. The vulnerability stems from the...