CVE-2013-6875 | Nagios Nagios XI up to 2012r1.3 NagiosQL tfPassword sql injection (EDB-38827 / Nessus ID 71636)
A vulnerability was found in Nagios Nagios XI up to 2012r1.3 and classified as critical. Affected by this issue is some unknown functionality of the component NagiosQL. The manipulation of the argument tfPassword leads to sql injection.
This vulnerability is handled as CVE-2013-6875. The attack may be launched remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.