Vulnerabilities > Nagios > Low

DATE CVE VULNERABILITY TITLE RISK
2021-09-15 CVE-2021-38156 Cross-site Scripting vulnerability in Nagios XI
In Nagios XI before 5.8.6, XSS exists in the dashboard page (/dashboards/#) when administrative users attempt to edit a dashboard.
network
nagios CWE-79
3.5
3.5
2021-07-30 CVE-2021-35479 Cross-site Scripting vulnerability in Nagios LOG Server
Nagios Log Server before 2.1.9 contains Stored XSS in the custom column view for the alert history and audit log function through the affected pp parameter.
network
nagios CWE-79
3.5
3.5
2021-07-30 CVE-2021-35478 Cross-site Scripting vulnerability in Nagios LOG Server
Nagios Log Server before 2.1.9 contains Reflected XSS in the dropdown box for the alert history and audit log function.
network
nagios CWE-79
3.5
3.5
2020-11-16 CVE-2020-27988 Cross-site Scripting vulnerability in Nagios XI
Nagios XI before 5.7.5 is vulnerable to XSS in Manage Users (Username field).
network
nagios CWE-79
3.5
3.5
2020-11-16 CVE-2020-27989 Cross-site Scripting vulnerability in Nagios XI
Nagios XI before 5.7.5 is vulnerable to XSS in Dashboard Tools (Edit Dashboard).
network
nagios CWE-79
3.5
3.5
2020-11-16 CVE-2020-27990 Cross-site Scripting vulnerability in Nagios XI
Nagios XI before 5.7.5 is vulnerable to XSS in the Deployment tool (add agent).
network
nagios CWE-79
3.5
3.5
2020-11-16 CVE-2020-27991 Cross-site Scripting vulnerability in Nagios XI
Nagios XI before 5.7.5 is vulnerable to XSS in Account Information (Email field).
network
nagios CWE-79
3.5
3.5
2020-03-22 CVE-2020-10819 Cross-site Scripting vulnerability in Nagios XI 5.6.11
Nagios XI 5.6.11 allows XSS via the includes/components/ldap_ad_integration/ username parameter.
network
nagios CWE-79
3.5
3.5
2020-03-22 CVE-2020-10820 Cross-site Scripting vulnerability in Nagios XI 5.6.11
Nagios XI 5.6.11 allows XSS via the includes/components/ldap_ad_integration/ password parameter.
network
nagios CWE-79
3.5
3.5
2020-03-22 CVE-2020-10821 Cross-site Scripting vulnerability in Nagios XI 5.6.11
Nagios XI 5.6.11 allows XSS via the account/main.php theme parameter.
network
nagios CWE-79
3.5
3.5