Ne-Svandahm

**Name of the Vulnerable Software and Affected Versions** Nagios NCPA versions prior to 2.4.0 **Description** A vulnerability was found in Nagios NCPA, affecting the file agent/listener/templates/tail.html. The manipulation of the `name` argument leads to cross-site scripting. The attack can be initiated remotely. Upgrading to version 2.4.0 is able to address this issue. **Recommendations** For Nagios NCPA versions prior to 2.4.0, upgrade to version 2.4.0 to address the issue. As a temporary workaround, consider restricting access to the `tail.html` template until the upgrade is applied.