Nagios XI before v5.8.7 was discovered to contain a cross-site scripting (XSS) vulnerability via the ajax.php script in CCM 3.1.5.Referenceshttps://www.nagios.com/downloads/nagios-xi/change-log/#5.8.7
