Nagios NagiosXI 2012R1.6
Approved changes feed: RSS · Atom
cpe:2.3:a:nagios:nagios_xi:2012r1.6:*:*:*:*:*:*:*
part: a version: 2012r1.6 update: *
| Vendor | Nagios (7fb1328e-019e-51f8-8fa9-c12efadd1bbe) |
|---|---|
| Product | Nagios Xi (7baa8382-9566-5d4f-a39b-a6738305acfe) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2013-6875 |
vulnerable | 2026-06-03 14:33:32.855990 |
Details available
SQL injection vulnerability in functions/prepend_adm.php in Nagios Core Config Manager in Nagios XI before 2012R2.4 allows remote attackers to execute arbitrary SQL commands via the tfPassword parameter to nagiosql/index.php.
Published: 2013-11-26T16:00:00.000Z
Updated: 2024-09-16T20:42:01.565Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-10074 |
vulnerable | 2026-06-03 14:32:47.500543 |
Nagios XI < 2012R2.6 XSS via Tools Menu
Nagios XI versions prior to 2012R2.6 are vulnerable to cross-site scripting (XSS) via the Tools Menu of the web interface. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's browser.
Published: 2025-10-30T21:56:22.290Z
Updated: 2025-11-17T18:21:37.954Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.