Cross-Site Scripting Vulnerability in Nagios XI Web Interface
CVE-2016-15052
5.1MEDIUM
What is CVE-2016-15052?
Versions of Nagios XI prior to 5.2.4 are susceptible to a cross-site scripting vulnerability affecting the Menu System of its web interface. This flaw arises from inadequate validation and escaping of user-supplied data, potentially allowing attackers to inject and execute malicious scripts within a user's browser session.
Affected Version(s)
XI 0 < 5.2.4