Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nagios nagios 1.0 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-15708
Snoopy 1.0 in Nagios XI 5.5.6 allows remote unauthenticated malicious users to execute arbitrary commands via a crafted HTTP request.
Nagios Nagios Xi 5.5.6
2 EDB exploits
2 Metasploit modules
1 Github repository
NA
CVE-2013-7108
Multiple off-by-one errors in Nagios Core 3.5.1, 4.0.2, and previous versions, and Icinga prior to 1.8.5, 1.9 prior to 1.9.4, and 1.10 prior to 1.10.2 allow remote authenticated users to obtain sensitive information from process memory or cause a denial of service (crash) via a l...
Nagios Nagios 3.0
Nagios Nagios 3.0.3
Nagios Nagios 3.0.4
Nagios Nagios 3.2.1
Nagios Nagios 3.2.2
Nagios Nagios 3.2.3
Nagios Nagios
Nagios Nagios 3.0.1
Nagios Nagios 3.0.2
Nagios Nagios 3.1.2
Nagios Nagios 3.2.0
Nagios Nagios 3.4.3
Nagios Nagios 3.5.1
Nagios Nagios 3.1.0
Nagios Nagios 3.1.1
Nagios Nagios 3.4.1
Nagios Nagios 3.4.2
Nagios Nagios 3.0.5
Nagios Nagios 3.0.6
Nagios Nagios 3.3.1
Nagios Nagios 3.4.0
Icinga Icinga 1.9.0
1 EDB exploit
NA
CVE-2011-2179
Multiple cross-site scripting (XSS) vulnerabilities in config.c in config.cgi in (1) Nagios 3.2.3 and (2) Icinga prior to 1.4.1 allow remote malicious users to inject arbitrary web script or HTML via the expand parameter, as demonstrated by an (a) command action or a (b) hosts ac...
Icinga Icinga 1.3.1
Icinga Icinga 1.0.2
Icinga Icinga 0.8.1
Icinga Icinga 0.8.0
Icinga Icinga
Icinga Icinga 1.3.0
Icinga Icinga 1.0.1
Icinga Icinga 1.0
Nagios Nagios 3.2.3
Icinga Icinga 0.8.4
Icinga Icinga 1.0.3
Icinga Icinga 1.2.0
Icinga Icinga 1.2.1
Icinga Icinga 0.8.3
Icinga Icinga 0.8.2
1 EDB exploit
NA
CVE-2011-1523
Cross-site scripting (XSS) vulnerability in statusmap.c in statusmap.cgi in Nagios 3.2.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the layer parameter.
Nagios Nagios 2.0b1
Nagios Nagios 2.0
Nagios Nagios 1.0b3
Nagios Nagios 1.0b2
Nagios Nagios 3.0
Nagios Nagios 2.0b5
Nagios Nagios 2.0b4
Nagios Nagios 1.2
Nagios Nagios 1.1
Nagios Nagios 1.0 B1
Nagios Nagios 1.0 B2
Nagios Nagios 3.0.3
Nagios Nagios 3.0.2
Nagios Nagios 2.1
Nagios Nagios 2.4
Nagios Nagios 3.0.1
Nagios Nagios 1.4.1
Nagios Nagios 2.5
Nagios Nagios 2.7
Nagios Nagios 2.10
Nagios Nagios 2.0b3
Nagios Nagios 2.0b2
NA
CVE-2009-2288
statuswml.cgi in Nagios prior to 3.1.1 allows remote malicious users to execute arbitrary commands via shell metacharacters in the (1) ping or (2) Traceroute parameters.
Nagios Nagios 2.0b4
Nagios Nagios 2.10
Nagios Nagios 3.0.3
Nagios Nagios 3.0.2
Nagios Nagios 3.0
Nagios Nagios 1.0b4
Nagios Nagios 1.1
Nagios Nagios 1.4.1
Nagios Nagios 2.0
Nagios Nagios 3.0.6
Nagios Nagios 3.0.4
Nagios Nagios
Nagios Nagios 1.0
Nagios Nagios 1.0b1
Nagios Nagios 1.0b2
Nagios Nagios 2.7
Nagios Nagios 3.0.5
Nagios Nagios 3.0.1
3 EDB exploits
NA
CVE-2008-6373
Unspecified vulnerability in Nagios prior to 3.0.6 has unspecified impact and remote attack vectors related to CGI programs, "adaptive external commands," and "writing newlines and submitting service comments."
Nagios Nagios 2.0b6
Nagios Nagios 1.3
Nagios Nagios 1.2
Nagios Nagios 1.0 B3
Nagios Nagios 1.0b1
Nagios Nagios 3.0
Nagios Nagios 2.9
Nagios Nagios 3.0.3
Nagios Nagios 2.2
Nagios Nagios 2.1
Nagios Nagios 2.3.1
Nagios Nagios 2.8
Nagios Nagios 2.0b5
Nagios Nagios 2.0b4
Nagios Nagios 1.1
Nagios Nagios 1.0b6
Nagios Nagios 1.0 B1
Nagios Nagios 1.0 B2
Nagios Nagios 3.0.2
Nagios Nagios 3.0.4
Nagios Nagios 2.4
Nagios Nagios 2.0rc2
NA
CVE-2008-5027
The Nagios process in (1) Nagios prior to 3.0.5 and (2) op5 Monitor prior to 4.0.1 allows remote authenticated users to bypass authorization checks, and trigger execution of arbitrary programs by this process, via an (a) custom form or a (b) browser addon.
Nagios Nagios 1.0b4
Nagios Nagios 1.0b3
Nagios Nagios 1.4
Nagios Nagios 1.3
Nagios Nagios 2.0b4
Nagios Nagios 2.0rc2
Nagios Nagios 2.5
Nagios Nagios 2.7
Nagios Nagios 3.0
Op5 Monitor 3.3.2
Op5 Monitor 3.3.1
Op5 Monitor 2.8
Nagios Nagios 1.0 B3
Nagios Nagios 1.0b1
Nagios Nagios 1.0b2
Nagios Nagios 1.4.1
Nagios Nagios 1.2
Nagios Nagios 1.1
Nagios Nagios 1.0b6
Nagios Nagios 2.0rc1
Nagios Nagios 2.3
Nagios Nagios 2.8
NA
CVE-2008-5028
Cross-site request forgery (CSRF) vulnerability in cmd.cgi in (1) Nagios 3.0.5 and (2) op5 Monitor prior to 4.0.1 allows remote malicious users to send commands to the Nagios process, and trigger execution of arbitrary programs by this process, via unspecified HTTP requests.
Nagios Nagios 3.0
Nagios Nagios 2.0b5
Nagios Nagios 2.7
Nagios Nagios 2.4
Op5 Monitor
Nagios Nagios 2.0b6
Nagios Nagios 1.0b3
Nagios Nagios 1.1
Nagios Nagios 2.1
Op5 Monitor 3.3.1
Nagios Nagios 1.0b6
Nagios Nagios 3.0.1
Nagios Nagios 1.0
Nagios Nagios 2.3.1
Nagios Nagios 2.2
Op5 Monitor 3.2
Nagios Nagios 2.0b2
Op5 Monitor 2.8
Op5 Monitor 3.2.4
Nagios Nagios 1.0b4
Nagios Nagios 3.0.2
Nagios Nagios 2.5
NA
CVE-2006-2489
Integer overflow in CGI scripts in Nagios 1.x prior to 1.4.1 and 2.x prior to 2.3.1 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a content length (Content-Length) HTTP header. NOTE: this is a different vulnerability th...
Nagios Nagios 1.0
Nagios Nagios 1.0b1
Nagios Nagios 1.2
Nagios Nagios 1.3
Nagios Nagios 2.0b5
Nagios Nagios 2.0b6
Nagios Nagios 1.0b2
Nagios Nagios 1.0b3
Nagios Nagios 1.4
Nagios Nagios 2.0
Nagios Nagios 2.0rc1
Nagios Nagios 2.0rc2
Nagios Nagios 1.0b6
Nagios Nagios 1.1
Nagios Nagios 2.0b3
Nagios Nagios 2.0b4
Nagios Nagios 2.3
Nagios Nagios 1.0b4
Nagios Nagios 1.0b5
Nagios Nagios 2.0b1
Nagios Nagios 2.0b2
Nagios Nagios 2.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started