Page 4 of 88 results (0.008 seconds)

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0

Nagios Enterprises NagiosXI <= 5.8.4 contains a Server-Side Request Forgery (SSRF) vulnerability in schedulereport.php. Any authenticated user can create scheduled reports containing PDF screenshots of any view in the NagiosXI application. Due to lack of input sanitisation, the target page can be replaced with an SSRF payload to access internal resources or disclose local system files. Nagios Enterprises NagiosXI versiones anteriores a 5.8.4 incluyéndola, contiene una vulnerabilidad de tipo Server-Side Request Forgery (SSRF) en el archivo schedulereport.php. Cualquier usuario autenticado puede crear informes programados que contengan capturas de pantalla en PDF de cualquier visualización de la aplicación NagiosXI. • http://nagios.com https://www.nagios.com/downloads/nagios-xi/change-log • CWE-918: Server-Side Request Forgery (SSRF) •

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0

Nagios XI before 5.8.5 incorrectly allows manage_services.sh wildcards. Nagios XI versiones anteriores a 5.8.5, permite incorrectamente los comodines de manage_services.sh • https://assets.nagios.com/downloads/nagiosxi/CHANGES-5.TXT https://www.nagios.com/downloads/nagios-xi/change-log •

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0

Nagios XI before 5.8.5 has Incorrect Permission Assignment for repairmysql.sh. Nagios XI versiones anteriores a 5.8.5, presenta una Asignación de Permisos Incorrecta para el archivo repairmysql.sh • https://assets.nagios.com/downloads/nagiosxi/CHANGES-5.TXT https://www.nagios.com/downloads/nagios-xi/change-log • CWE-276: Incorrect Default Permissions •

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0

Nagios XI before 5.8.5 incorrectly allows backup_xi.sh wildcards. Nagios XI versiones anteriores a 5.8.5, permite incorrectamente los comodines backup_xi.sh • https://assets.nagios.com/downloads/nagiosxi/CHANGES-5.TXT https://www.nagios.com/downloads/nagios-xi/change-log •

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0

Nagios XI before 5.8.5 has Incorrect Permission Assignment for migrate.php. Nagios XI versiones anteriores a 5.8.5, presenta una Asignación de Permisos Incorrecta para el archivo migrate.php • https://assets.nagios.com/downloads/nagiosxi/CHANGES-5.TXT https://www.nagios.com/downloads/nagios-xi/change-log • CWE-276: Incorrect Default Permissions •