EmreOvunc/Nagios-XI-Reflected-XSS

Releases0

Stars1

A reflected cross-site scripting (XSS) in Nagios XI 5.7.1 can result in an attacker performing malicious actions to users who open a maliciously crafted link or third-party web page.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-23992 ↗	Aug 22, 2023Tuesday, 22 August 2023, 19:16	6.1 MEDIUM	—
Cross Site Scripting (XSS) in Nagios XI 5.7.1 allows remote attackers to run arbitrary code via returnUrl parameter in a crafted GET request.