Medium severity6.1NVD Advisory· Published Feb 6, 2018· Updated Jun 17, 2026
CVE-2015-3618
CVE-2015-3618
Description
Cross-site scripting (XSS) vulnerability in Nagios Business Process Intelligence (BPI) before 2.3.4 allows remote attackers to inject arbitrary web script or HTML via vectors involving index.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <2.3.4
- Range: <2.3.4
Patches
Vulnerability mechanics
References
2- assets.nagios.com/downloads/exchange/nagiosbpi/CHANGELOG.txtnvdRelease NotesVendor Advisory
- fortiguard.com/zeroday/FG-VD-15-011nvdThird Party Advisory
News mentions
0No linked articles in our index yet.