Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / nagios

nagios

301 tracked vulnerabilities.

CVE-2023-53688 MEDIUM

Nagios XI < 5.11.3 - Cross-Site Scripting and Cross-Site Request Forgery via Hypermap Replay

CVE-2023-48082 CRITICAL

Nagios XI < 2024R1 - API Key Generation Weakness

CVE-2023-51072 MEDIUM

Nagios XI <= 2024R1 - Authenticated Stored Cross-Site Scripting via NOC Audio File Upload

CVE-2023-48085 CRITICAL

Nagios XI < 5.11.3 - Remote Code Execution via command_test.php

CVE-2023-48084 CRITICAL NUCLEI

Nagios XI < 5.11.3 - SQL Injection via Bulk Modification Tool

CVE-2023-40934 HIGH

Nagios XI < 5.11.2 - Authenticated SQL Injection via Host Escalation Notification Settings

CVE-2023-40933 HIGH

Nagios XI < 5.11.2 - Authenticated SQL Injection via ID Parameter in update_banner_message()

CVE-2023-40932 MEDIUM

Nagios XI < 5.11.2 - Authenticated Stored Cross-Site Scripting via Custom Logo Alt-Text Field

CVE-2023-40931 MEDIUM NUCLEI

Nagios XI 5.11.0-5.11.1 - Authenticated SQL Injection via Banner Message ID Parameter

CVE-2022-50588 MEDIUM

Nagios XI < 5.8.9 - Stored Cross-Site Scripting in Update Checking Feature

CVE-2022-50587 MEDIUM

Nagios XI < 5.8.9 - Stored Cross-Site Scripting via Apply Configuration Error Text

CVE-2022-50586 MEDIUM

Nagios XI < 5.8.9 - Stored Cross-Site Scripting via BPI Info URL Field

CVE-2022-50585 MEDIUM

Nagios XI < 5.8.9 - Cross-Site Scripting via Audit Log Page Search Input

CVE-2022-50584 MEDIUM

Nagios XI < 5.8.8 - Cross-Site Scripting in Core Config Manager Search and Deletion Interfaces

CVE-2022-38254 MEDIUM

Nagios XI < 5.8.7 - Cross-Site Scripting via ajax.php in CCM

CVE-2022-38251 MEDIUM

Nagios XI 5.8.6 - Stored Cross-Site Scripting via System Performance Settings Page

CVE-2022-38250 CRITICAL

Nagios XI 5.8.6 - SQL Injection via MIB Name Parameter

CVE-2022-38249 MEDIUM

Nagios XI 5.8.6 - Stored Cross-Site Scripting via MTR Component

CVE-2022-38248 MEDIUM

Nagios XI < 5.8.7 - Cross-Site Scripting in auditlog.php

CVE-2022-38247 MEDIUM

Nagios XI 5.8.6 - Stored Cross-Site Scripting via System Settings Page

CVE-2022-29272 MEDIUM NUCLEI

Nagios XI <= 5.8.5 - Open Redirect via Login Function

CVE-2022-29271 MEDIUM

Nagios XI <5.8.5 - Privilege Escalation

CVE-2022-29270 MEDIUM

Nagios XI <= 5.8.5 - Unauthenticated Email Address Change

CVE-2022-29269 MEDIUM

Nagios XI <= 5.8.5 - Authenticated Cross-Site Scripting in Schedule Report Function

CVE-2021-47698 MEDIUM

Nagios XI < 5.8.7 - Cross-Site Scripting via Core UI Views URL Handling

Previous Page 4 of 13 Next

Products

nagios_xi 192 nagios 37 log_server 23 fusion 19 network_analyzer 7 nagios_core 5 XI 3 incident_manager 3 plugins 3 remote_plug_in_executor 3 Log Server 2 Nagios XI 2 favorites 2 nagios_cross_platform_agent 2 business_process_intelligence 1 nagios_network_analyzer 1 nagios_xi_docker_wizard 1 nagios_xi_switch_wizard 1 nagios_xi_watchguard_wizard 1 ndoutils 1 remote_plugin_executor 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy