Search CVE reports
1 – 10 of 65 results
PNP4Nagios through 81ebfc5 has stored XSS in the AJAX controller via the basket API and filters. This affects 0.6.26.
1 affected package
pnp4nagios
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| pnp4nagios | — | Not in release | Not in release | Ignored |
PNP4Nagios through 81ebfc5 lacks CSRF protection in the AJAX controller. This affects 0.6.26.
1 affected package
pnp4nagios
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| pnp4nagios | — | Not in release | Not in release | Ignored |
Nagios XI before v5.8.7 was discovered to contain a cross-site scripting (XSS) vulnerability via the ajax.php script in CCM 3.1.5.
3 affected packages
nagios4, icinga, nagios3
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| nagios4 | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| icinga | — | Not in release | Not in release | Needs evaluation |
| nagios3 | — | Not in release | Not in release | Needs evaluation |
Nagios XI v5.8.6 was discovered to contain a cross-site scripting (XSS) vulnerability via the System Performance Settings page under the Admin panel.
3 affected packages
nagios4, icinga, nagios3
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| nagios4 | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| icinga | — | Not in release | Not in release | Needs evaluation |
| nagios3 | — | Not in release | Not in release | Needs evaluation |
Nagios XI v5.8.6 was discovered to contain a SQL injection vulnerability via the mib_name parameter at the Manage MIBs page.
3 affected packages
nagios4, icinga, nagios3
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| nagios4 | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| icinga | — | Not in release | Not in release | Needs evaluation |
| nagios3 | — | Not in release | Not in release | Needs evaluation |
Nagios XI v5.8.6 was discovered to contain a cross-site scripting (XSS) vulnerability via the MTR component in version 1.0.4.
3 affected packages
nagios4, icinga, nagios3
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| nagios4 | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| icinga | — | Not in release | Not in release | Needs evaluation |
| nagios3 | — | Not in release | Not in release | Needs evaluation |
Nagios XI before v5.8.7 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities at auditlog.php.
3 affected packages
nagios4, icinga, nagios3
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| nagios4 | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| icinga | — | Not in release | Not in release | Needs evaluation |
| nagios3 | — | Not in release | Not in release | Needs evaluation |
Nagios XI v5.8.6 was discovered to contain a cross-site scripting (XSS) vulnerability via the System Settings page under the Admin panel.
3 affected packages
nagios4, nagios3, icinga
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| nagios4 | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| nagios3 | — | Not in release | Not in release | Needs evaluation |
| icinga | — | Not in release | Not in release | Needs evaluation |
Nagios Core application version 4.2.4 is vulnerable to Site-Wide Cross-Site Request Forgery (CSRF) in many functions, like adding – deleting for hosts or servers.
1 affected package
nagios4
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| nagios4 | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
Nagios 4.4.5 allows an attacker, who already has administrative access to change the "URL for JSON CGIs" configuration setting, to modify the Alert Histogram and Trends code via crafted versions of the...
1 affected package
nagios4
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| nagios4 | Not affected | Not affected | Needs evaluation | Not in release |