Nagios

Nagios Xi

189 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2016-15051

  • EPSS 0.43%
  • Veröffentlicht 30.10.2025 21:55:32
  • Zuletzt bearbeitet 05.11.2025 18:27:28

Nagios XI versions prior to 5.2.4 are vulnerable to cross-site scripting (XSS) via the Reports interface through values from the startdate and enddate fields. Insufficient validation or escaping of user-supplied input may allow an attacker to inject ...

5.4

CVE-2011-10038

  • EPSS 0.43%
  • Veröffentlicht 30.10.2025 21:55:10
  • Zuletzt bearbeitet 06.11.2025 14:41:20

Nagios XI versions prior to 2011R1.9 are vulnerable to cross-site scripting (XSS) via the recurring downtime script of the web interface. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary...

5.4

CVE-2021-47695

  • EPSS 0.43%
  • Veröffentlicht 30.10.2025 21:54:48
  • Zuletzt bearbeitet 05.11.2025 18:22:54

Nagios XI versions prior to 5.8.0 are vulnerable to stored cross-site scripting (XSS) via the My Tools page. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a v...

5.4

CVE-2016-15053

  • EPSS 0.43%
  • Veröffentlicht 30.10.2025 21:54:25
  • Zuletzt bearbeitet 05.11.2025 18:27:07

Nagios XI versions prior to 5.2.4 are vulnerable to cross-site scripting (XSS) via the “My Reports” listing of the web interface. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script ...

5.4

CVE-2016-15052

  • EPSS 0.43%
  • Veröffentlicht 30.10.2025 21:54:04
  • Zuletzt bearbeitet 05.11.2025 18:27:18

Nagios XI versions prior to 5.2.4 are vulnerable to cross-site scripting (XSS) via the Menu System of the web interface. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the co...

5.4

CVE-2020-36866

  • EPSS 0.43%
  • Veröffentlicht 30.10.2025 21:53:41
  • Zuletzt bearbeitet 06.11.2025 20:15:36

Nagios XI versions prior to 5.7.3 are vulnerable to cross-site scripting (XSS) via the Manage Users page of the Admin interface. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script i...

5.4

CVE-2023-7316

  • EPSS 0.64%
  • Veröffentlicht 30.10.2025 21:52:58
  • Zuletzt bearbeitet 06.11.2025 16:22:59

Nagios XI versions prior to 2024R1 are vulnerable to cross-site scripting (XSS) via the Graph Explorer component. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context o...

5.4

CVE-2023-7315

  • EPSS 0.15%
  • Veröffentlicht 30.10.2025 21:52:33
  • Zuletzt bearbeitet 05.11.2025 18:21:10

Nagios XI versions prior to 5.11.3 are vulnerable to cross-site scripting (XSS) via the Graph Explorer component. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context o...

5.4

CVE-2024-14001

  • EPSS 0.64%
  • Veröffentlicht 30.10.2025 21:52:13
  • Zuletzt bearbeitet 06.11.2025 16:10:43

Nagios XI versions prior to 2024R1.1.3 are vulnerable to cross-site scripting (XSS) via the Executive Summary Report component. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in...

5.4

CVE-2020-36864

  • EPSS 0.43%
  • Veröffentlicht 30.10.2025 21:51:46
  • Zuletzt bearbeitet 05.11.2025 18:23:59

Nagios XI versions prior to 5.7.2 are vulnerable to cross-site scripting (XSS) via the background color settings in Dashboards. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in...