Cross-Site Scripting Vulnerability in Nagios Network Analyzer
CVE-2023-7319
5.1MEDIUM
What is CVE-2023-7319?
Nagios Network Analyzer prior to version 2024R1 is susceptible to cross-site scripting (XSS) attacks via the Percentile Calculator menu. This vulnerability arises from inadequate validation and escaping of user-supplied input, which can lead to an attacker being able to inject and execute arbitrary scripts in the browser context of a user. This vulnerability poses a significant risk to the security of users interacting with the affected software.
Affected Version(s)
Network Analyzer 0 < 2024R1