Security Advisory

CVE-2018-17146

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-06-19 17:25:16

Last updated 2024-08-05 10:39:59

Assigner mitre

State PUBLISHED

Description

A cross-site scripting vulnerability exists in Nagios XI before 5.5.4 via the name parameter within the Account Information page. Exploitation of this vulnerability allows an attacker to execute arbitrary JavaScript code within the auto login admin management page.

← Browse all CVEs View on cve.org ↗