Vulnerabilities > Nagios > Nagios > 1.0.b1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-05-03 | CVE-2011-1523 | Cross-Site Scripting vulnerability in Nagios Cross-site scripting (XSS) vulnerability in statusmap.c in statusmap.cgi in Nagios 3.2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the layer parameter. | 4.3 |
2009-03-02 | CVE-2008-6373 | Code Injection vulnerability in Nagios Unspecified vulnerability in Nagios before 3.0.6 has unspecified impact and remote attack vectors related to CGI programs, "adaptive external commands," and "writing newlines and submitting service comments." | 5.0 |
2008-11-10 | CVE-2008-5027 | Permissions, Privileges, and Access Controls vulnerability in multiple products The Nagios process in (1) Nagios before 3.0.5 and (2) op5 Monitor before 4.0.1 allows remote authenticated users to bypass authorization checks, and trigger execution of arbitrary programs by this process, via an (a) custom form or a (b) browser addon. | 6.5 |
2002-12-31 | CVE-2002-1959 | Unspecified vulnerability in Nagios 1.0B1/1.0B2/1.0B3 Nagios 1.0b1 through 1.0b3 allows remote attackers to execute arbitrary commands via shell metacharacters in plugin output. | 10.0 |