Total vulnerabilities in the database
An issue was discovered in Nagios XI 5.4.13. A registered user is able to use directory traversal to read local files, as demonstrated by URIs beginning with index.php?xiwindow=./ and config/?xiwindow=../ substrings.
Software | From | Fixed in |
---|---|---|
nagios / nagios_xi | 5.4.13 | 5.4.13.x |