Vulnerability Details CVE-2018-15712
Nagios XI 5.5.6 allows reflected cross site scripting from remote unauthenticated attackers via the host parameter in api_tool.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.117
EPSS Ranking 93.4%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References