Arbitrary Web Script Injection Vulnerability in Nagios Statusmap.cgi

Arbitrary Web Script Injection Vulnerability in Nagios Statusmap.cgi

CVE-2011-1523 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in statusmap.c in statusmap.cgi in Nagios 3.2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the layer parameter.

Learn more about our Cis Benchmark Audit For Apple Ios.