3 matches found
Cross-Site Scripting vulnerability in Nagios
Advisory: Cross-Site Scripting vulnerability in Nagios Advisory ID: SSCHADV2011-006 Author: Stefan Schurtz Affected Software: Successfully tested on: nagios 3.2.3 Vendor URL: http://www.nagios.org Vendor Status: informed CVE-ID: - ========================== Vulnerability Description:...
CVE-2011-1523
CVE-2011-1523 is an XSS flaw in Nagios, affecting statusmap.cgi in Nagios 3.2.3 and earlier via the layer parameter. Connected advisories confirm fixes in various distributions (e.g., Fedora update FEDORA-2012-1592 and SUSE/openSUSE advisories; openSUSE-NAGIOS-4.4.6-2.5). Affected component: stat...
CVE-2011-1523
Cross-site scripting XSS vulnerability in statusmap.c in statusmap.cgi in Nagios 3.2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the layer parameter...