Aggregator

CVE-2021-47693 | Nagios XI up to 5.8.4 Search Text sql injection

Vuldb Updates
3 months ago
A vulnerability marked as critical has been reported in Nagios XI up to 5.8.4. Affected by this vulnerability is an unknown functionality of the component Search Text Handler. This manipulation causes sql injection. The identification of this vulnerability is CVE-2021-47693. It is possible to initiate the attack remotely. There is no exploit available. It is suggested to upgrade the affected component.
vuldb.com

CVE-2023-7322 | Nagios Log Server 2.0.8/2.1.3/2.1.7/2.1.9 API Endpoint authorization

Vuldb Updates
3 months ago
A vulnerability classified as critical was found in Nagios Log Server 2.0.8/2.1.3/2.1.7/2.1.9. The affected element is an unknown function of the component API Endpoint. The manipulation results in incorrect authorization. This vulnerability is identified as CVE-2023-7322. The attack can be executed remotely. There is not any exploit available. Upgrading the affected component is advised.
vuldb.com

CVE-2023-7319 | Nagios Network Analyzer 2.4.2/2.4.3 Percentile Calculator Menu cross site scripting

Vuldb Updates
3 months ago
A vulnerability labeled as problematic has been found in Nagios Network Analyzer 2.4.2/2.4.3. Impacted is an unknown function of the component Percentile Calculator Menu. Executing manipulation can lead to cross site scripting. This vulnerability is handled as CVE-2023-7319. The attack can be executed remotely. There is not any exploit available. The affected component should be upgraded.
vuldb.com

CVE-2021-47691 | Nagios XI up to 5.8.1 Core Config Manager config_name/service_description cross site scripting

Vuldb Updates
3 months ago
A vulnerability classified as problematic has been found in Nagios XI up to 5.8.1. This affects an unknown function of the component Core Config Manager. This manipulation of the argument config_name/service_description causes cross site scripting. The identification of this vulnerability is CVE-2021-47691. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2023-7318 | Nagios XI up to 2024R1.0.1 Command Expansion Page cross site scripting

Vuldb Updates
3 months ago
A vulnerability was found in Nagios XI up to 2024R1.0.1 and classified as problematic. Impacted is an unknown function of the component Command Expansion Page. Such manipulation leads to cross site scripting. This vulnerability is listed as CVE-2023-7318. The attack may be performed from remote. There is no available exploit. It is suggested to upgrade the affected component.
vuldb.com

CVE-2023-53689 | Nagios Fusion up to 4.1.x License Key Configuration cross site scripting

Vuldb Updates
3 months ago
A vulnerability, which was classified as problematic, was found in Nagios Fusion up to 4.1.x. This impacts an unknown function of the component License Key Configuration Handler. Executing manipulation can lead to cross site scripting. The identification of this vulnerability is CVE-2023-53689. The attack may be launched remotely. There is no exploit available. You should upgrade the affected component.
vuldb.com

CVE-2023-53690 | Nagios Fusion up to 4.1.x LDAP/AD cross site scripting

Vuldb Updates
3 months ago
A vulnerability was found in Nagios Fusion up to 4.1.x and classified as problematic. Affected by this vulnerability is an unknown functionality of the component LDAP/AD. The manipulation results in cross site scripting. This vulnerability is identified as CVE-2023-53690. The attack can be executed remotely. There is not any exploit available. It is suggested to upgrade the affected component.
vuldb.com

CVE-2023-7312 | Nagios Fusion up to 4.1.x Email Setting cross site scripting

Vuldb Updates
3 months ago
A vulnerability was found in Nagios Fusion up to 4.1.x. It has been classified as problematic. Affected by this issue is some unknown functionality of the component Email Setting Handler. This manipulation causes cross site scripting. This vulnerability is tracked as CVE-2023-7312. The attack is possible to be carried out remotely. No exploit exists. Upgrading the affected component is recommended.
vuldb.com

CVE-2022-50585 | Nagios XI up to 5.8.8 Audit Log Page cross site scripting

Vuldb Updates
3 months ago
A vulnerability was found in Nagios XI up to 5.8.8. It has been rated as problematic. This vulnerability affects unknown code of the component Audit Log Page. Performing manipulation results in cross site scripting. This vulnerability is cataloged as CVE-2022-50585. It is possible to initiate the attack remotely. There is no exploit available. Upgrading the affected component is advised.
vuldb.com

Another one of those!!

不安全
3 months ago
作者分享了他创建技术简报的经历,每天发布涵盖平台、科技、AI、Web开发和加密五个主题的简报,并通过闭门测试获得积极反馈,现寻求更多意见。

How MSSPs Turn Security Alerts Into Exponential Revenue With Morpheus AI

Security Boulevard
3 months ago

See how Morpheus AI transforms managed security economics—delivering 24/7 autonomous coverage, unified data, and exponential returns without increasing headcount.

The post How MSSPs Turn Security Alerts Into Exponential Revenue With Morpheus AI appeared first on D3 Security.

The post How MSSPs Turn Security Alerts Into Exponential Revenue With Morpheus AI appeared first on Security Boulevard.

Shriram Sharma

How MSSPs Turn Security Alerts Into Exponential Revenue With Morpheus AI

不安全
3 months ago
托管安全服务提供商市场整合加剧,预计到2028年前200家将减少至120家。Morpehus AI通过自动化处理安全警报和优化运营流程,帮助提供商降低成本并提升服务质量。其功能包括统一数据模型、智能分析和高效响应机制,推动业务从线性增长转向指数收益。

German ISP Aurologic GmbH has Become a Central Nexus for Hosting Malicious Infrastructure

Cyber Security News
3 months ago

German hosting provider aurologic GmbH has emerged as a central facilitator within the global malicious infrastructure ecosystem, providing upstream transit and data center services to numerous high-risk hosting networks. Operating from its primary facility at Tornado Datacenter GmbH & Co. KG in Langen, Germany, aurologic markets itself as a high-capacity European carrier offering dedicated server […]

The post German ISP Aurologic GmbH has Become a Central Nexus for Hosting Malicious Infrastructure appeared first on Cyber Security News.

Tushar Subhra Dutta

Managed ad