Approved changes feed: RSS · Atom
cpe:2.3:a:nagios:nagios:2.8:*:*:*:*:*:*:*
part: a version: 2.8 update: *
| Vendor | Nagios (7fb1328e-019e-51f8-8fa9-c12efadd1bbe) |
|---|---|
| Product | Nagios (50575199-1514-50c1-89a9-fe9479fd126c) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:deb/debian/nagios4 |
purl2cpe | 2026-06-01 10:14:43.793321 |
pkg:deb/ubuntu/nagios4 |
purl2cpe | 2026-06-01 10:14:43.793323 |
pkg:github/nagiosenterprises/nagioscore |
purl2cpe | 2026-06-01 10:14:43.793325 |
pkg:rpm/fedora/nagios |
purl2cpe | 2026-06-01 10:14:43.793326 |
pkg:rpm/opensuse/nagios |
purl2cpe | 2026-06-01 10:14:43.793328 |
pkg:sourceforge/nagios |
purl2cpe | 2026-06-01 10:14:43.793329 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2011-1523 |
vulnerable | 2026-06-03 14:31:02.185815 |
Details available
Cross-site scripting (XSS) vulnerability in statusmap.c in statusmap.cgi in Nagios 3.2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the layer parameter.
Published: 2011-05-03T19:00:00.000Z
Updated: 2024-08-06T22:28:41.906Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2008-6373 |
vulnerable | 2026-06-03 14:29:13.223195 |
Details available
Unspecified vulnerability in Nagios before 3.0.6 has unspecified impact and remote attack vectors related to CGI programs, "adaptive external commands," and "writing newlines and submitting service comments."
Published: 2009-03-02T19:00:00.000Z
Updated: 2024-08-07T11:27:35.625Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2008-5028 |
vulnerable | 2026-06-03 14:29:07.074694 |
Details available
Cross-site request forgery (CSRF) vulnerability in cmd.cgi in (1) Nagios 3.0.5 and (2) op5 Monitor before 4.0.1 allows remote attackers to send commands to the Nagios process, and trigger execution of arbitrary programs by this process, via unspecified HTTP requests.
Published: 2008-11-10T15:00:00.000Z
Updated: 2024-08-07T10:40:16.763Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2008-5027 |
vulnerable | 2026-06-03 14:29:07.052412 |
Details available
The Nagios process in (1) Nagios before 3.0.5 and (2) op5 Monitor before 4.0.1 allows remote authenticated users to bypass authorization checks, and trigger execution of arbitrary programs by this process, via an (a) custom form or a (b) browser addon.
Published: 2008-11-10T15:00:00.000Z
Updated: 2024-08-07T10:40:17.262Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2008-1360 |
vulnerable | 2026-06-03 14:28:40.287397 |
Details available
Cross-site scripting (XSS) vulnerability in Nagios before 2.11 allows remote attackers to inject arbitrary web script or HTML via unknown vectors to unspecified CGI scripts, a different issue than CVE-2007-5624.
Published: 2008-03-17T17:00:00.000Z
Updated: 2024-08-07T08:17:34.572Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2007-5803 |
vulnerable | 2026-06-03 14:28:27.900417 |
Details available
Multiple cross-site scripting (XSS) vulnerabilities in CGI programs in Nagios before 2.12 might allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2007-5624 and CVE-2008-1360.
Published: 2008-05-13T23:00:00.000Z
Updated: 2024-08-07T15:47:00.589Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.