Identifier
|
Related Record |
Severity
|
Date Published
|
Description | Versions Affected |
---|---|---|---|---|---|
CVE-2023-38350 | Low | Jul 15, 2023 | PNP4Nagios through 81ebfc5 has stored XSS in the AJAX controller via the basket API and filters. This affects 0.6.26. |
0.6.26
|
|
CVE-2023-38349 | Low | Jul 15, 2023 | PNP4Nagios through 81ebfc5 lacks CSRF protection in the AJAX controller. This affects 0.6.26. |
0.6.26
|
|
CVE-2017-16834 | BDSA-2017-1980 | High | Nov 16, 2017 | PNP4Nagios through 0.6.26 has /usr/bin/npcd and npcd.cfg owned by an unprivileged account but root code execution depends on these files, which allows more... |
0.6.26, 0.6.25, 0.6.24, 0.6.21, 0.6.20, 0.6.16, 0.6.19, 0.6.18, 0.6.17, 0.6.15
|