{"uuid": "8072ba61-7d99-4fbf-8a23-e3baa395c995", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-24401", "type": "published-proof-of-concept", "source": "https://t.me/tengkorakcybercrewz/4749", "content": "Nagios XI \u2014 RCE\n\nNagios XI 2024R1.01 has a vulnerability in the monitoringwizard.php component, allowing authenticated SQL injection (CVE-2024-24401) that lets attackers create an admin account and remote code execution. \n\nSource:\nhttps://github.com/MAWK0235/CVE-2024-24401\n\n#nagios #sql #rce #privesc #poc #exploit\n\n\n\nNotice!!!\n\nFor those who can not Access \u267f our telegram channel through the formal \ud83d\udd87\ufe0f link \ud83e\udef0 A new \ud83d\udd17 link Have been created again \ud83e\ude90 so join through this link \ud83d\udd17\ud83d\udd87\ufe0f\n\n\u2764\ufe0f\u200d\ud83d\udd25Join Our Telegram Channel\u2764\ufe0f\u200d\ud83d\udd25\n     \ud83e\udec0 https://t.me/SuBoXo \ud83e\udec0", "creation_timestamp": "2024-10-01T08:57:09.000000Z"}