Vulnerabilities > Nagios > LOG Server > 2.1.7

DATE CVE VULNERABILITY TITLE RISK
2021-07-30 CVE-2021-35478 Cross-site Scripting vulnerability in Nagios LOG Server
Nagios Log Server before 2.1.9 contains Reflected XSS in the dropdown box for the alert history and audit log function.
network
low complexity
nagios CWE-79
5.4
5.4
2021-07-30 CVE-2021-35479 Cross-site Scripting vulnerability in Nagios LOG Server
Nagios Log Server before 2.1.9 contains Stored XSS in the custom column view for the alert history and audit log function through the affected pp parameter.
network
low complexity
nagios CWE-79
5.4
5.4