Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nagios vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2021-26024
The Favorites component prior to 1.0.2 for Nagios XI 5.8.0 is vulnerable to Insecure Direct Object Reference: it is possible to create favorites for any other user account.
Nagios Favorites
6.1
CVSSv3
CVE-2021-26023
The Favorites component prior to 1.0.2 for Nagios XI 5.8.0 is vulnerable to XSS.
Nagios Favorites
9.8
CVSSv3
CVE-2021-3193
Improper access and command validation in the Nagios Docker Config Wizard prior to 1.1.2, as used in Nagios XI up to and including 5.7, allows an unauthenticated malicious user to execute remote code as the apache user.
Nagios Nagios Xi
6.1
CVSSv3
CVE-2020-25385
Nagios Log Server 2.1.7 contains a cross-site scripting (XSS) vulnerability in /nagioslogserver/configure/create_snapshot through the snapshot_name parameter, which may impact users who open a maliciously crafted link or third-party web page.
Nagios Log Server
1 Github repository
7.2
CVSSv3
CVE-2020-35578
An issue exists in the Manage Plugins page in Nagios XI prior to 5.8.0. Because the line-ending conversion feature is mishandled during a plugin upload, a remote, authenticated admin user can execute operating-system commands.
Nagios Nagios Xi
1 Metasploit module
8.8
CVSSv3
CVE-2020-35269
Nagios Core application version 4.2.4 is vulnerable to Site-Wide Cross-Site Request Forgery (CSRF) in many functions, like adding – deleting for hosts or servers.
Nagios Nagios Core 4.2.4
5.4
CVSSv3
CVE-2020-27989
Nagios XI prior to 5.7.5 is vulnerable to XSS in Dashboard Tools (Edit Dashboard).
Nagios Nagios Xi
5.4
CVSSv3
CVE-2020-27991
Nagios XI prior to 5.7.5 is vulnerable to XSS in Account Information (Email field).
Nagios Nagios Xi
5.4
CVSSv3
CVE-2020-27988
Nagios XI prior to 5.7.5 is vulnerable to XSS in Manage Users (Username field).
Nagios Nagios Xi
5.4
CVSSv3
CVE-2020-27990
Nagios XI prior to 5.7.5 is vulnerable to XSS in the Deployment tool (add agent).
Nagios Nagios Xi
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »