CVE-2011-10036

Name of the Vulnerable Software and Affected Versions Nagios XI versions prior to 2011R1.9

Description The software is susceptible to cross-site scripting (XSS) due to inadequate validation or escaping of user-supplied input when handling the backend url JavaScript link. This could allow an attacker to inject and execute arbitrary script within a victim's browser.

Recommendations Update to version 2011R1.9 or later.