Security Advisories | Entries from Wednesday, March 9. 2011

Warning: opendir(/var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/sh/3.0.83.2/scripts/): failed to open dir: No such file or directory in /var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/serendipity_event_dpsyntaxhighlighter.php on line 26

Warning: Invalid argument supplied for foreach() in /var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/serendipity_event_dpsyntaxhighlighter.php on line 170
Skip to content

SSCHADV2011-002 - Cross-Site Scripting vulnerability in Nagios

Posted by Stefan Schurtz on Wednesday, March 9. 2011

Advisory:	Cross-Site Scripting vulnerability in Nagios
Advisory ID:	SSCHADV2011-002
Author:	Stefan Schurtz
Affected Software:	Successfully tested on: nagios-3.2.0 / nagios-3.2.3
Vendor URL:	http://www.nagios.org
Vendor Status:	fixed
CVE-ID:	2011-1523
OSVDB-ID:	71059

======================
Vulnerability Description:
======================

This is a Cross-Site Scripting vulnerability

JavaScript can be included in style sheets by using "expression()" (IE only)

==============
Technical Details:
==============

Continue reading "SSCHADV2011-002 - Cross-Site Scripting vulnerability in Nagios"

Sidebar

Calendar

Werbung

Exploit-DB updates by Offensive Security

[webapps] Flowise 3.0.4 - Remote Code Execution (RCE)

Friday, October 31. 2025

[webapps] Casdoor 2.95.0 - Cross-Site Request Forgery (CSRF)

Wednesday, October 29. 2025

[remote] Ilevia EVE X1/X5 Server 4.7.18.0.eden - Reverse Rootshell

Tuesday, September 16. 2025

[local] Microsoft Windows Server 2025 Hyper-V NT Kernel Integration VSP - Elevation of Privilege

Tuesday, September 16. 2025

[remote] ClipBucket 5.5.0 - Arbitrary File Upload

Tuesday, September 16. 2025

OpenBSD Journal

In -current, chromium (and derivatives) gain VA-API support

Tuesday, November 4. 2025

OpenSMTPD 7.8.0p0 released

Sunday, November 2. 2025

LibreSSL 4.1.2 and 4.2.1 released

Sunday, November 2. 2025

Enable BPF filtering on sockets

Thursday, October 30. 2025

Making the veb(4) virtual Ethernet bridge VLAN aware

Wednesday, October 29. 2025

OpenBSD 7.8 Released

Wednesday, October 22. 2025

In -current, chromium (and derivatives) now have VA-API support

Monday, October 20. 2025

WPA3 support for OpenBSD 802.11 wireless funded by NLNet Foundation

Friday, October 17. 2025

LibreSSL 4.2.0 Released

Wednesday, October 15. 2025

Archives

Blog Administration

Open login screen

Imprint | Contact | Privacy Statement

Warning: opendir(/var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/sh/3.0.83.2/scripts/): failed to open dir: No such file or directory in /var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/serendipity_event_dpsyntaxhighlighter.php on line 26

Warning: Invalid argument supplied for foreach() in /var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/serendipity_event_dpsyntaxhighlighter.php on line 170