Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2011-2179

Опубликовано: 14 июн. 2011
Источник: ubuntu
Приоритет: medium
CVSS2: 4.3

Описание

Multiple cross-site scripting (XSS) vulnerabilities in config.c in config.cgi in (1) Nagios 3.2.3 and (2) Icinga before 1.4.1 allow remote attackers to inject arbitrary web script or HTML via the expand parameter, as demonstrated by an (a) command action or a (b) hosts action.

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

1.10.3-1
cosmic

not-affected

1.10.3-1
devel

not-affected

1.10.3-1
esm-apps/bionic

not-affected

1.10.3-1
esm-apps/xenial

not-affected

1.10.3-1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected [1.10.3-1]]
hardy

DNE

lucid

DNE

maverick

not-affected

code not present

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

hardy

not-affected

code not present
lucid

DNE

maverick

DNE

natty

DNE

oneiric

DNE

Показывать по

РелизСтатусПримечание
artful

not-affected

3.2.3-3
bionic

not-affected

3.2.3-3
cosmic

DNE

devel

DNE

esm-apps/bionic

not-affected

3.2.3-3
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected [3.2.3-3]]
esm-infra/xenial

not-affected

3.2.3-3
hardy

DNE

lucid

not-affected

code not present
maverick

not-affected

code not present

Показывать по

Ссылки на источники

4.3 Medium

CVSS2

Связанные уязвимости

nvd логотип

CVE-2011-2179

nvd
больше 14 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in config.c in config.cgi in (1) Nagios 3.2.3 and (2) Icinga before 1.4.1 allow remote attackers to inject arbitrary web script or HTML via the expand parameter, as demonstrated by an (a) command action or a (b) hosts action.

debian логотип

CVE-2011-2179

debian
больше 14 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in config.c in con ...

github логотип

GHSA-p3hf-j3h8-8mqv

github
больше 3 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in config.c in config.cgi in (1) Nagios 3.2.3 and (2) Icinga before 1.4.1 allow remote attackers to inject arbitrary web script or HTML via the expand parameter, as demonstrated by an (a) command action or a (b) hosts action.

4.3 Medium

CVSS2