Published: 11/07/2014 Updated: 17/07/2014

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in share/pnp/application/views/kohana_error_page.php in PNP4Nagios prior to 0.6.22 allows remote malicious users to inject arbitrary web script or HTML via a parameter that is not properly handled in an error message.

Vulnerable Product	Search on Vulmon	Subscribe to Product
op5 monitor 6.3.0
pnp4nagios pnp4nagios 0.6.1
pnp4nagios pnp4nagios 0.6.10
pnp4nagios pnp4nagios 0.6.17
pnp4nagios pnp4nagios 0.6.18
pnp4nagios pnp4nagios 0.6.19
pnp4nagios pnp4nagios 0.6.0
pnp4nagios pnp4nagios 0.6.15
pnp4nagios pnp4nagios 0.6.16
pnp4nagios pnp4nagios 0.6.7
pnp4nagios pnp4nagios 0.6.11
pnp4nagios pnp4nagios 0.6.12
pnp4nagios pnp4nagios 0.6.2
pnp4nagios pnp4nagios 0.6.3
pnp4nagios pnp4nagios 0.6.4
pnp4nagios pnp4nagios
pnp4nagios pnp4nagios 0.6.20
pnp4nagios pnp4nagios 0.6.13
pnp4nagios pnp4nagios 0.6.14
pnp4nagios pnp4nagios 0.6.5
pnp4nagios pnp4nagios 0.6.6

CWE-79 http://secunia.com/advisories/59603 http://docs.pnp4nagios.org/pnp-0.6/dwnld http://www.securityfocus.com/bid/68350 http://sourceforge.net/p/pnp4nagios/code/ci/f846a6c9d007ca2bee05359af747619151195fc9 https://bugs.op5.com/view.php?id=8761 http://www.op5.com/blog/news/op5-monitor-6-3-1-release-notes http://openwall.com/lists/oss-security/2014/07/11/3 http://secunia.com/advisories/59535 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-4907

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect