CVE-2024-42898 | Nagios XI 2024R1.1.4 Account Settings Page Name cross site scripting

Posted by Angelo Barbosa | Jan 9, 2025 | CVE

A vulnerability was found in Nagios XI 2024R1.1.4. It has been classified as problematic. This affects an unknown part of the component Account Settings Page. The manipulation of the argument Name leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-42898. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-42898 | Nagios XI 2024R1.1.4 Account Settings Page Name cross site scripting

Related Posts

CVE-2024-43236 | Scott Paterson Easy PayPal Buy Now Button Plugin up to 1.9 on WordPress URL redirect

CVE-2024-39332 | Webswing 23.2.2 path traversal (usd-2024-0008)

CVE-2024-11788 | StreamWeasels YouTube Integration Plugin up to 1.3.6 on WordPress cross site scripting

CVE-2024-29200 | Kimai up to 2.12.x API insufficient granularity of access control