EUVD-2011-5265

Nagios XI versions prior to 2011R1.9 are vulnerable to cross-site scripting XSS via the link-handling functions used by status and report pages. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's...

EUVD-2011-5267

Nagios XI versions prior to 2011R1.9 are vulnerable to cross-site scripting XSS via the handling of the "backendurl" JavaScript link. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's browser...

PT-2025-44526

Name of the Vulnerable Software and Affected Versions Nagios XI versions prior to 2011R1.9 Description The software contains privilege escalation issues within scripts used for installing or updating system crontab entries. A local user with limited privileges could exploit...

PT-2025-44531

Name of the Vulnerable Software and Affected Versions Nagios XI versions prior to 2011R1.9 Description The software is susceptible to cross-site scripting XSS through the link-handling functions utilized by status and report pages. Insufficient validation or escaping of user-supplied input could...