CVE-2023-51072

EPSS 1.76% · P83 Updated Jun 17, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-51072

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

A stored cross-site scripting (XSS) vulnerability in the NOC component of Nagios XI version up to and including 2024R1 allows low-privileged users to execute malicious HTML or JavaScript code via the audio file upload functionality from the Operation Center section. This allows any authenticated user to execute arbitrary JavaScript code on behalf of other users, including the administrators.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Nagios XI 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Nagios XI是美国Nagios公司的一套IT基础设施监控解决方案。该方案支持对应用、服务、操作系统等进行监控和预警。 Nagios XI 2024R1及之前版本存在安全漏洞，该漏洞源于存在存储型跨站脚本(XSS)漏洞，允许低权限用户执行恶意HTML或JavaScript代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2023-51072

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2023-51072

请登录查看更多情报信息。

https://nvd.nist.gov/vuln/detail/CVE-2023-51072

Same Patch Batch · n/a · 2024-02-02 · 33 CVEs total

CVE-2024-22779	8.8 HIGH	ServerRPExposer 安全漏洞
CVE-2024-21485	6.5 MEDIUM	Dash 安全漏洞
CVE-2024-1198	6.3 MEDIUM	openBI Phar User.php addxinzhi deserialization
CVE-2024-1189	5.3 MEDIUM	AMPPS Encryption Passphrase denial of service
CVE-2024-1193	3.3 LOW	Navicat MySQL Conecction denial of service
CVE-2023-39611		Software FX Chart FX 安全漏洞
CVE-2024-25006		XenForo 安全漏洞
CVE-2023-48645		ARCHIBUS 安全漏洞
CVE-2023-50488		Blurams Lumi Security Camera 安全漏洞
CVE-2023-51820		Blurams Lumi Security Camera 安全漏洞
CVE-2024-24388		XunRuiCMS 安全漏洞
CVE-2023-51838		MeshCentral 安全漏洞
CVE-2024-22107		GTB Central Console 安全漏洞
CVE-2024-22108		GTB Central Console 安全漏洞
CVE-2024-24029		JFinalCMS 安全漏洞
CVE-2024-24160		MRCMS 安全漏洞
CVE-2024-24161		MRCMS 安全漏洞
CVE-2024-24470		flusity CMS 安全漏洞
CVE-2024-24524		flusity CMS 安全漏洞
CVE-2024-22851		LiveConfig 安全漏洞

Showing top 20 of 33 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2023-51072

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2023-51072

I. Basic Information for CVE-2023-51072

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2023-51072

III. Intelligence Information for CVE-2023-51072

Same Patch Batch · n/a · 2024-02-02 · 33 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2023-51072

Leave a comment