CVE-2013-10074

Name of the Vulnerable Software and Affected Versions Nagios XI versions prior to 2012R2.6

Description Nagios XI is susceptible to cross-site scripting (XSS) through the Tools Menu of its web interface. Insufficient validation or escaping of user-supplied input could allow an attacker to inject and execute arbitrary script within a victim’s browser.

Recommendations Update Nagios XI to version 2012R2.6 or later.