We're trying to purchase Nagios Log Server and support for our federal customer and we're running a trial version on a Ubuntu vm. However, when we scan the server with Nessus Vulnerability Scanner it's finding a very out-of-date version of JQuery which has a known cross site scripting vulnerability.
URL: http://xxx.xxx.xxx.xxx/nagioslogserver/ ... sver=2.1.6
If there is a patch available to update the version of JQuery, and all references to it in Nagios Log Server, we would like to try that. Otherwise, we may not be able to get his past the review board at the agency and will not be able to purchase it.
JQuery vulnerability in Nagios Log Server
-
benjaminsmith
- Posts: 5324
- Joined: Wed Aug 22, 2018 4:39 pm
- Location: saint paul
Re: JQuery vulnerability in Nagios Log Server
HI @RyanHe,
Welcome to the Nagios Support Forum. I see you have an open ticket for this issue in our ticketing system, so I will be closing this out and we'll move the conversation to the ticket.
Thanks!
Benjamin Smith
Technical Support Manager
Welcome to the Nagios Support Forum. I see you have an open ticket for this issue in our ticketing system, so I will be closing this out and we'll move the conversation to the ticket.
Thanks!
Benjamin Smith
Technical Support Manager
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.
Be sure to check out our Knowledgebase for helpful articles and solutions!
Be sure to check out our Knowledgebase for helpful articles and solutions!