simalamuel

3 exploits Active since Jan 2025
CVE-2024-42898 WRITEUP MEDIUM WRITEUP
Nagios XI 2024R1.1.4 - XSS
A cross-site scripting (XSS) vulnerability in Nagios XI 2024R1.1.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter in the Account Settings page.
CVSS 5.4
CVE-2025-25535 WRITEUP CRITICAL WRITEUP
SCRIPT CASE v.1.0.002 Build7 - Privilege Escalation
HTTP Response Manipulation in SCRIPT CASE v.1.0.002 Build7 allows a remote attacker to escalate privileges via a crafted request.
CVSS 9.8
CVE-2025-29322 WRITEUP MEDIUM WRITEUP
ScriptCase <v1.0.003 - Build 3 - XSS
A cross-site scripting (XSS) vulnerability in ScriptCase before v1.0.003 - Build 3 allows attackers to execute arbitrary code via a crafted payload to the "Connection Name" in the New Connection and Rename Connection pages.
CVSS 4.6