CVE-2021-35479

Severity CVSS v4.0:
Pending analysis
Type:
CWE-79 Cross-Site Scripting (XSS)
Publication date:
30/07/2021
Last modified:
10/02/2022

Description

Nagios Log Server before 2.1.9 contains Stored XSS in the custom column view for the alert history and audit log function through the affected pp parameter. This affects users who open a crafted link or third-party web page.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:nagios:log_server:*:*:*:*:*:*:*:* 2.1.9 (excluding)