Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNVD
CNVDadded 2021/01/14 12:0 a.m.1 views

Nagios XI Remote Code Execution Vulnerability

Nagios XI is a commercial monitoring solution built on Nagios Core, including dashboards, web-based configuration, advanced reporting and rich data visualization. A remote code execution vulnerability exists in the "Manage Plugins" page in Nagios XI versions prior to 5.8.0. The vulnerability stem...

9CVSS8.3AI score0.85202EPSS
Exploits7References1
NVD
NVDadded 2021/01/13 9:15 p.m.19 views

CVE-2020-35578

An issue was discovered in the Manage Plugins page in Nagios XI before 5.8.0. Because the line-ending conversion feature is mishandled during a plugin upload, a remote, authenticated admin user can execute operating-system commands...

9CVSS6.9AI score0.85202EPSS
Exploits7References4
Prion
Prionadded 2021/01/13 9:15 p.m.24 views

Design/Logic Flaw

An issue was discovered in the Manage Plugins page in Nagios XI before 5.8.0. Because the line-ending conversion feature is mishandled during a plugin upload, a remote, authenticated admin user can execute operating-system commands...

9CVSS6.8AI score0.85202EPSS
Exploits7References4Affected Software1
Cvelist
Cvelistadded 2021/01/13 8:19 p.m.24 views

CVE-2020-35578

An issue was discovered in the Manage Plugins page in Nagios XI before 5.8.0. Because the line-ending conversion feature is mishandled during a plugin upload, a remote, authenticated admin user can execute operating-system commands...

6.9AI score0.85202EPSS
Exploits7References4
CVE
CVEadded 2021/01/13 8:19 p.m.164 views

CVE-2020-35578

Nagios XI before 5.8.0 is affected by CVE-2020-35578 in the Manage Plugins page. The issue arises from mishandled line-ending conversion during plugin uploads, allowing a remote, authenticated admin to execute operating-system commands and achieve remote code execution (as the apache user) via a ...

9CVSS6.8AI score0.85202EPSS
Exploits7References4Affected Software1
CNNVD
CNNVDadded 2021/01/13 12:0 a.m.1 views

Nagios XI 操作系统命令注入漏洞

Nagios XI is a commercial monitoring solution built on Nagios Core, including dashboards, web-based configuration, advanced reporting and rich data visualization. A remote code execution vulnerability exists in the "Manage Plugins" page in Nagios XI versions prior to 5.8.0. The vulnerability stem...

9CVSS7.7AI score0.85202EPSS
Exploits7References10
OSV
OSVadded 2016/05/22 8:59 p.m.1 views

UBUNTU-CVE-2016-2157

Cross-site request forgery CSRF vulnerability in mod/assign/adminmanageplugins.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 allows remote attackers to hijack the authentication of administrators for requests that manage...

8.8CVSS7.3AI score0.00097EPSS
Exploits0References3
Rows per page
Query Builder