CVE-2018-18245

Description

Nagios Core 4.4.2 has XSS via the alert summary reports of plugin results, as demonstrated by a SCRIPT element delivered by a modified check_load plugin to NRPE.

Affected packages (1)

• Debian/nagios4from 0, < 4.3.4-3

CVSS scores

References (1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2018-18245