Security Advisory

CVE-2023-7321

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-30 21:27:23

Last updated 2025-11-17 21:36:23

Assigner VulnCheck

State PUBLISHED

Description

Nagios Log Server versions prior to 2.1.14 are vulnerable to cross-site scripting (XSS) via the Snapshots Page. Untrusted log content was not safely encoded for the output context, allowing attacker-controlled data present in logs to execute script in the victim’s browser within the application origin.

← Browse all CVEs View on cve.org ↗