CVE-2021-47696

Name of the Vulnerable Software and Affected Versions Nagios XI versions prior to 5.8.0

Description Nagios XI versions prior to 5.8.0 are susceptible to cross-site scripting (XSS) through the handling of BPI config IDs. A lack of proper input validation or escaping of user-provided data could allow an attacker to inject and execute arbitrary script within a victim’s browser.

Recommendations Update to version 5.8.0 or later.