CVE-2022-29269 Information

Description

In Nagios XI through 5.8.5 in the schedule report function an authenticated attacker is able to inject HTML tags that lead to the reformatting/editing of emails from an official email address.

Reference

https://github.com/4LPH4-NL/CVEs https://github.com/sT0wn-nl/CVEs/blob/master/README.md#nagios-xi https://www.nagios.com/downloads/nagios-xi/change-log/ https://assets.nagios.com/downloads/nagiosxi/CHANGES-5.TXT