Log Server Security Vulnerabilities and Issues — Log Server CVE List

Lucene search

NagiosLog Server

6 matches found

CVE•added 2019/09/03 10:15 p.m.•126 views

CVE-2019-15898

Nagios Log Server before 2.0.8 allows Reflected XSS via the username on the Login page.

6.1CVSS5.9AI score0.07949EPSS

CVE•added 2020/07/30 3:15 p.m.•67 views

CVE-2020-16157

A Stored XSS vulnerability exists in Nagios Log Server before 2.1.7 via the Notification Methods -> Email Users menu.

5.4CVSS5.1AI score0.10648EPSS

CVE•added 2025/04/15 10:15 p.m.•67 views

CVE-2025-29471

Cross Site Scripting vulnerability in Nagios Log Server v.2024R1.3.1 allows a remote attacker to execute arbitrary code via a payload into the Email field.

8.3CVSS7.3AI score0.04295EPSS

CVE•added 2021/07/30 2:15 p.m.•57 views

CVE-2021-35479

Nagios Log Server before 2.1.9 contains Stored XSS in the custom column view for the alert history and audit log function through the affected pp parameter. This affects users who open a crafted link or third-party web page.

5.4CVSS5.1AI score0.48001EPSS

CVE•added 2021/07/30 2:15 p.m.•51 views

CVE-2021-35478

Nagios Log Server before 2.1.9 contains Reflected XSS in the dropdown box for the alert history and audit log function. All parameters used for filtering are affected. This affects users who open a crafted link or third-party web page.

5.4CVSS5.2AI score0.5559EPSS

CVE•added 2021/01/20 1:15 a.m.•49 views

CVE-2020-25385

Nagios Log Server 2.1.7 contains a cross-site scripting (XSS) vulnerability in /nagioslogserver/configure/create_snapshot through the snapshot_name parameter, which may impact users who open a maliciously crafted link or third-party web page.

6.1CVSS5.9AI score0.37181EPSS