header-logo
Suggest Exploit
vendor:
Nagios Log Server
by:
Emre ÖVÜNÇ
7.5
CVSS
HIGH
Stored Cross-Site Scripting (XSS)
79
CWE
Product Name: Nagios Log Server
Affected Version From: 2.1.7
Affected Version To: 2.1.7
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Platforms Tested: Linux/ISO
2020

Nagios Log Server 2.1.7 – ‘snapshot_name’ Persistent Cross-Site Scripting

A stored cross-site scripting (XSS) in Nagios Log Server 2.1.7 can result in an attacker performing malicious actions to users who open a maliciously crafted link or third-party web page.

Mitigation:

Nagios Log Server 2.1.8 has been released to address this vulnerability.
Source

Exploit-DB raw data:

Navigation

Suggest Exploit

Services By CQR