CVE-2007-5803

Multiple cross-site scripting (XSS) vulnerabilities in CGI programs in Nagios before 2.12 might allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2007-5624 and CVE-2008-1360.

Published: May 14, 2008
Updated: Apr 13, 2023
CVE: CVE-2007-5803
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

CWEs:

CWE-79

OWASP TOP 10:

A7 - Cross-Site Scripting (XSS)

Affected Software
References

Software	From	Fixed in
nagios / nagios	2.0b5	2.0b5.x
nagios / nagios	2.7	2.7.x
nagios / nagios	2.4	2.4.x
nagios / nagios	2.0b6	2.0b6.x
nagios / nagios	1.0b3	1.0b3.x
nagios / nagios	1.1	1.1.x
nagios / nagios	2.1	2.1.x
nagios / nagios	1.0b6	1.0b6.x
nagios / nagios	2.3.1	2.3.1.x
nagios / nagios	2.2	2.2.x
nagios / nagios	2.0b2	2.0b2.x
nagios / nagios	1.0b4	1.0b4.x
nagios / nagios	2.5	2.5.x
nagios / nagios	2.0b4	2.0b4.x
nagios / nagios	2.8	2.8.x
nagios / nagios	2.10	2.10.x
nagios / nagios	1.2	1.2.x
nagios / nagios	1.0b5	1.0b5.x
nagios / nagios	2.0b1	2.0b1.x
nagios / nagios	2.0	2.0.x
nagios / nagios	1.4	1.4.x
nagios / nagios	1.4.1	1.4.1.x
nagios / nagios	2.0b3	2.0b3.x
nagios / nagios	1.3	1.3.x
nagios / nagios	2.11	2.11.x
nagios / nagios	2.0rc1	2.0rc1.x
nagios / nagios	2.3	2.3.x
nagios / nagios	1.0b1	1.0b1.x
nagios / nagios	1.0b2	1.0b2.x
nagios / nagios	2.9	2.9.x
nagios / nagios	2.0rc2	2.0rc2.x

Vulnerability Database

289,697

CVE-2007-5803