Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

XI — Vulnerabilities & Security Advisories 77

All 77 CVE vulnerabilities found in XI, with AI-generated Chinese analysis, references, and POCs.

Vendor: Nagios

CVE IDTitleCVSSSeverityPublished
CVE-2021-47698 Nagios XI < 5.8.7 XSS in Core UI Views URL handling CWE-79 6.1AIMediumAI2025-11-03
CVE-2024-13997 Nagios XI < 2024R1.1.3 Privilege Escalation via Migrate Server Feature to Root on Host CWE-269 7.2AIHighAI2025-11-03
CVE-2024-13998 Nagios XI < 2024R1.1.3 API Keys & Hashed Passwords Authenticated Information Disclosure CWE-497 8.8AIHighAI2025-11-03
CVE-2024-13992 Nagios XI < 2024R1.1 XSS via Missing Page / 404 CWE-79 6.1 -2025-10-31
CVE-2011-10037 Nagios XI < 2011R1.9 XSS via xiwindow Variables Affecting Permalinks CWE-79 6.1AIMediumAI2025-10-30
CVE-2021-47697 Nagios XI < 5.8.0 XSS via Views URL Handling CWE-79 6.1AIMediumAI2025-10-30
CVE-2018-25121 Nagios XI < 5.4.13 XSS via Views Page CWE-79 6.1AIMediumAI2025-10-30
CVE-2013-10074 Nagios XI < 2012R2.6 XSS via Tools Menu CWE-79 4.8AIMediumAI2025-10-30
CVE-2011-10040 Nagios XI < 2011R1.9 XSS via Status/Report Page Link Functions CWE-79 5.4AIMediumAI2025-10-30
CVE-2016-15051 Nagios XI < 5.2.4 XSS via Report startdate/enddate Fields CWE-79 5.4AIMediumAI2025-10-30
CVE-2011-10038 Nagios XI < 2011R1.9 XSS via Recurring Downtime Script CWE-79 6.1AIMediumAI2025-10-30
CVE-2021-47695 Nagios XI < 5.8.0 XSS via My Tools Page CWE-79 4.8AIMediumAI2025-10-30
CVE-2016-15053 Nagios XI < 5.2.4 XSS via “My Reports” Listing CWE-79 5.4AIMediumAI2025-10-30
CVE-2016-15052 Nagios XI < 5.2.4 XSS via Menu System CWE-79 4.8AIMediumAI2025-10-30
CVE-2020-36866 Nagios XI < 5.7.3 XSS via Manage Users in Admin Interface CWE-79 4.8AIMediumAI2025-10-30
CVE-2023-7316 Nagios XI < 2024R1 XSS via Graph Explorer CWE-79 6.1AIMediumAI2025-10-30
CVE-2023-7315 Nagios XI < 5.11.3 XSS via Graph Explorer CWE-79 6.1AIMediumAI2025-10-30
CVE-2024-14001 Nagios XI < 2024R1.1.3 XSS via Executive Summary Report CWE-79 5.4AIMediumAI2025-10-30
CVE-2020-36864 Nagios XI < 5.7.2 XSS via Dashboard Background Color Setting CWE-79 5.4AIMediumAI2025-10-30
CVE-2023-7318 Nagios XI < 2024R1.0.2 XSS via Core Command Expansion CWE-79 6.1AIMediumAI2025-10-30
CVE-2024-14000 Nagios XI < 2024R1.1.3 XSS via Capacity Planning Report CWE-79 5.4AIMediumAI2025-10-30
CVE-2023-7313 Nagios XI < 5.11.3 XSS via Bulk Modifications CWE-79 4.8AIMediumAI2025-10-30
CVE-2020-36865 Nagios XI < 5.7.2 XSS via BPI Config Management CWE-79 5.4AIMediumAI2025-10-30
CVE-2021-47696 Nagios XI < 5.8.0 XSS via BPI Config ID Handling CWE-79 4.8AIMediumAI2025-10-30
CVE-2023-7314 Nagios XI < 5.11.3 XSS via Bandwidth Report CWE-79 6.1AIMediumAI2025-10-30
CVE-2011-10036 Nagios XI < 2011R1.9 XSS via backend_url JavaScript Link Handler CWE-79 5.4AIMediumAI2025-10-30
CVE-2011-10039 Nagios XI < 2011R1.9 XSS via Alert Heatmap Report & “My Reports” Listing CWE-79 5.4AIMediumAI2025-10-30
CVE-2021-47699 Nagios XI < 5.8.7 XSS in Audit Log via Send to NLS Form CWE-79 4.8AIMediumAI2025-10-30
CVE-2023-53688 Nagios XI < 5.11.3 XSS & CSRF via Hypermap Replay CWE-79 8.8AIHighAI2025-10-30
CVE-2023-7317 Nagios XI < 2024R1 Web SSH Terminal Missing Access Control CWE-862 8.8AIHighAI2025-10-30

All 77 known CVE vulnerabilities affecting XI with full Chinese analysis, references, and POCs where available.