pkg:Debian/icingaweb2

All known vulnerabilities

• CRITICAL9.8CVE-2018-18249Icinga Web 2 before 2.6.2 allows injection of PHP ini-file directives via vectors involving environment variables as the channel to send in…
  from 0, < 2.6.2-1
• HIGH8.8CVE-2022-24715Icinga Web 2 is an open source monitoring web interface, framework and command-line interface.
  from 0
• HIGH7.5CVE-2022-24716Icinga Web 2 is an open source monitoring web interface, framework and command-line interface.
  from 0, < 2.9.6-1
• HIGH7.5icingaweb2 - security update
  from 0, < 2.6.2-3+deb10u1
• HIGH7.5icingaweb2 - security update
  from 0, < 2.8.2-1
• HIGH7.5icingaweb2 - security update
  from 0, < 2.4.1-1+deb9u1
• HIGH7.5Icinga Web 2 before 2.6.2 allows parameters that break navigation dashlets, as demonstrated by a single '$' character as the Name of a Navi…
  from 0, < 2.6.2-1
• MEDIUM6.5Icinga Web 2 is an open source monitoring web interface, framework, and command-line interface.
  from 0
• MEDIUM6.5Icinga Web 2 before 2.6.2 has CSRF via /icingaweb2/config/moduledisable?name=monitoring to disable the monitoring module, or via /icingaweb…
  from 0, < 2.6.2-1
• MEDIUM6.1Icinga Web 2 is an open source monitoring web interface, framework and command-line interface.
  from 0
• MEDIUM6.1Icinga Web 2 is an open source monitoring web interface, framework and command-line interface.
  from 0
• MEDIUM6.1Icinga Web 2 is an open source monitoring web interface, framework and command-line interface.
  from 0
• MEDIUM6.1Icinga Web 2 has XSS via the /icingaweb2/monitoring/list/services dir parameter, the /icingaweb2/user/list query string, the /icingaweb2/mo…
  from 0, < 2.6.2-1
• MEDIUM5.4Icinga Web 2 is an open source monitoring web interface, framework and command-line interface.
  from 0
• MEDIUM5.4Icinga Web 2 before 2.6.2 has XSS via the /icingaweb2/navigation/add icon parameter.
  from 0, < 2.6.2-1
• MEDIUM5.3Icinga Web 2 is an open source monitoring web interface, framework and command-line interface.
  from 0
• MEDIUM5.3Icinga Web 2 is an open source monitoring web interface, framework and command-line interface.
  from 0
• —Incinga Web 2.8.2 contains a client-side cross-site scripting vulnerability that allows remote attackers to inject malicious script codes t…
  from 0