This module exploits a XSRF vulnerability in Nagios which allows CORE Core Impact to perform remote command injection impersonating an administrator. This module runs a web server waiting for a Nagios administrator to connect to it. When the client connects, it will perform a Cross Site Request Forgery and try to install an agent on the Nagios server by using a command injection vulnerability.
CVE Link
Exploit Platform
Exploit Type
Product Name