Nagios XI is a commercial monitoring solution built on Nagios Core, including dashboards, web-based configuration, advanced reporting, and rich data visualization.A SQL injection vulnerability exists in the Bulk Modification Tool in versions of Nagios XI prior to 5.8.5. The vulnerability stems from improper input validation. An attacker could exploit this vulnerability to obtain sensitive database information.