Nagios Log Server

Do you want an email whenever new security vulnerabilities are reported in Nagios Log Server?

By the Year

In 2023 there have been 0 vulnerabilities in Nagios Log Server . Log Server did not have any published security vulnerabilities last year.

Year	Vulnerabilities	Average Score
2023	0	0.00
2022	0	0.00
2021	3	5.63
2020	1	5.40
2019	1	6.10
2018	0	0.00

It may take a day or so for new Log Server vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Nagios Log Server Security Vulnerabilities

Nagios Log Server before 2.1.9 contains Stored XSS in the custom column view for the alert history and audit log function through the affected pp parameter

CVE-2021-35479 5.4 - Medium - July 30, 2021

Nagios Log Server before 2.1.9 contains Stored XSS in the custom column view for the alert history and audit log function through the affected pp parameter. This affects users who open a crafted link or third-party web page.

XSS

Nagios Log Server before 2.1.9 contains Reflected XSS in the dropdown box for the alert history and audit log function

CVE-2021-35478 5.4 - Medium - July 30, 2021

Nagios Log Server before 2.1.9 contains Reflected XSS in the dropdown box for the alert history and audit log function. All parameters used for filtering are affected. This affects users who open a crafted link or third-party web page.

XSS

Nagios Log Server 2.1.7 contains a cross-site scripting (XSS) vulnerability in /nagioslogserver/configure/create_snapshot through the snapshot_name parameter

CVE-2020-25385 6.1 - Medium - January 20, 2021

Nagios Log Server 2.1.7 contains a cross-site scripting (XSS) vulnerability in /nagioslogserver/configure/create_snapshot through the snapshot_name parameter, which may impact users who open a maliciously crafted link or third-party web page.

XSS

A Stored XSS vulnerability exists in Nagios Log Server before 2.1.7

CVE-2020-16157 5.4 - Medium - July 30, 2020

A Stored XSS vulnerability exists in Nagios Log Server before 2.1.7 via the Notification Methods -> Email Users menu.

XSS

Nagios Log Server before 2.0.8

CVE-2019-15898 6.1 - Medium - September 03, 2019

Nagios Log Server before 2.0.8 allows Reflected XSS via the username on the Login page.

XSS

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Nagios Log Server or by Nagios? Click the Watch button to subscribe.

Nagios
Vendor

Nagios Log Server
Product

Nagios Log Server

By the Year

Recent Nagios Log Server Security Vulnerabilities

Nagios Log Server before 2.1.9 contains Stored XSS in the custom column view for the alert history and audit log function through the affected pp parameter CVE-2021-35479 5.4 - Medium - July 30, 2021

Nagios Log Server before 2.1.9 contains Reflected XSS in the dropdown box for the alert history and audit log function CVE-2021-35478 5.4 - Medium - July 30, 2021

Nagios Log Server 2.1.7 contains a cross-site scripting (XSS) vulnerability in /nagioslogserver/configure/create_snapshot through the snapshot_name parameter CVE-2020-25385 6.1 - Medium - January 20, 2021

A Stored XSS vulnerability exists in Nagios Log Server before 2.1.7 CVE-2020-16157 5.4 - Medium - July 30, 2020

Nagios Log Server before 2.0.8 CVE-2019-15898 6.1 - Medium - September 03, 2019