RSS   Vulnerabilities for 'Nagios log server'   RSS

2021-07-30
 
CVE-2021-35478

CWE-79
 

 
Nagios Log Server before 2.1.9 contains Reflected XSS in the dropdown box for the alert history and audit log function. All parameters used for filtering are affected. This affects users who open a crafted link or third-party web page.

 
 
CVE-2021-35479

CWE-79
 

 
Nagios Log Server before 2.1.9 contains Stored XSS in the custom column view for the alert history and audit log function through the affected pp parameter. This affects users who open a crafted link or third-party web page.

 


Copyright 2024, cxsecurity.com

 

Back to Top