Search found 2 matches
- Wed May 15, 2019 3:20 am
- Forum: Open Source Nagios Projects
- Topic: Possible server path disclosure on showlog.cgi
- Replies: 1
- Views: 846
Possible server path disclosure on showlog.cgi
Sensitive data like "/usr/local/nagios/var/nagios.log" is seen on paged displayed with showlog.cgi One or more fully qualified path names were found on this page. From this information the attacker may learn the file system structure from the web server. This information can be used to con...
- Tue May 14, 2019 11:40 am
- Forum: Open Source Nagios Projects
- Topic: Regarding Possible internal IP address disclosure
- Replies: 1
- Views: 1316
Regarding Possible internal IP address disclosure
A string matching an internal IPv4 address was found on this page. This may disclose information about the IP addressing scheme of the internal network. This information can be used to conduct further attacks During GET /Nagios/cgi-bin/status.json?details=true HTTP/1.1 communication between client a...