CVE-2016-15051 in Nagiosinformação

Sumário

de MITRE • 31/10/2025

Nagios XI versions prior to 5.2.4 are vulnerable to cross-site scripting (XSS) via the Reports interface through values from the startdate and enddate fields. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's browser.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsável

VulnCheck

Reservar

28/10/2025

Divulgação

31/10/2025

Moderação

aceite

Entrada

VDB-330686

CPE

pronto

CWE

CWE-79 (confirmado)

CVSS

3.5 (VulDB)

EPSS

0.00501

KEV

não

Atividades

muito baixo

Sector

Telecommunication, Lawfirm, ...

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-15051
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-15051
CVE Details	https://www.cvedetails.com/cve/CVE-2016-15051/

◂ Voltar Visão Geral Próximo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!