Home / os / winmobile

Nagios XI 5.5.10 XSS / Remote Code Execution

Posted on 15 April 2019

Various vulnerabilities have been found in Nagios XI version 5.5.10, which allow a remote attacker able to trick an authenticated victim (with "autodiscovery job" creation privileges) to visit a malicious URL to obtain a remote root shell via a reflected cross site scripting, an authenticated remote code Execution and a local privilege escalation.

 

TOP

Malware :

Exploits :