2019-06-19 17:25:16
mitre
PUBLISHED
A cross-site scripting vulnerability exists in Nagios XI before 5.5.4 via the name parameter within the Account Information page. Exploitation of this vulnerability allows an attacker to execute arbitrary JavaScript code within the auto login admin management page.