CVE-2023-7323 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Nagios Log Server versions prior to 2024R1 are vulnerable to cross-site scripting (XSS) via the Create User function. Insufficient validation or escaping of use…
Medium CVSS: 5.1

CVE-2023-7323

Nagios Log Server versions prior to 2024R1 are vulnerable to cross-site scripting (XSS) via the Create User function. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's browser.
Vendor
Nagios
Product
Log Server
CWE
CWE-79
Yayın Tarihi
2025-10-30 22:15:44
Güncelleme
2025-11-06 16:20:27
Source Identifier
disclosure@vulncheck.com
KEV Date Added
-

Kategoriler

CWE-79 Log Server MEDIUM Nagios 2025

Referanslar

https://www.nagios.com/changelog/nagios-log-server-2024r1/ https://www.vulncheck.com/advisories/nagios-log-server-xss-via-create-user-function