A SQL injection issue was discovered in Nagios XI before 5.4.13 via the admin/logbook.php txtSearch parameter.
References
Link | Resource |
---|---|
https://www.seebug.org/vuldb/ssvid-97267 | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2018-05-16 06:29
Updated : 2018-06-15 12:36
NVD link : CVE-2018-10737
Mitre link : CVE-2018-10737
JSON object : View
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Products Affected
nagios
- nagios_xi