Vulnerability Details CVE-2018-15712
Nagios XI 5.5.6 allows reflected cross site scripting from remote unauthenticated attackers via the host parameter in api_tool.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.268
EPSS Ranking 96.2%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References