Description
In Thruk Monitoring through 2.46.3, the login field of the login form is vulnerable to reflected XSS. This vulnerability can be exploited by unauthenticated remote attackers to target users of the monitoring interface.
Published: 2026-05-08
Score: n/a
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A reflected cross‑site scripting vulnerability exists in the login field of the Thruk Monitoring web interface. Unauthenticated remote attackers can submit crafted input through the login form, causing the input to be reflected in the response without proper neutralisation. This flaw permits execution of arbitrary client‑side code in the context of the victim’s browser used to view the monitoring interface.

Affected Systems

All installations of Thruk Monitoring up to and including version 2.46.3 are affected. No specific vendor modifiers are listed.

Risk and Exploitability

The flaw can be triggered without authentication and only requires access to the monitoring interface’s login page, making the attack vector remote over HTTP or HTTPS. Exploitation involves sending a specially crafted request to the login endpoint and observing the reflected user code. While the CVSS score is not supplied, the presence of reflected XSS indicates significant potential for client‑side script execution. The EPSS score is not available, and the vulnerability is not listed in the CISA KEV catalog, suggesting that widespread exploitation is not yet documented but the risk remains notable for exposed monitoring systems.

Generated by OpenCVE AI on May 8, 2026 at 06:52 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Thruk Monitoring to a version later than 2.46.3 that contains the fixed login page
  • If an update is not immediately possible, restrict the monitoring interface to trusted networks or enforce network‑level authentication so that only authorised visitors can reach the login form
  • Deploy a web application firewall or similar security layer that filters out script‑related input before it reaches the application

Generated by OpenCVE AI on May 8, 2026 at 06:52 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 08 May 2026 07:15:00 +0000

Type Values Removed Values Added
Title Reflected XSS in Thruk Monitoring Login Form
Weaknesses CWE-79

Fri, 08 May 2026 05:00:00 +0000

Type Values Removed Values Added
Description In Thruk Monitoring through 2.46.3, the login field of the login form is vulnerable to reflected XSS. This vulnerability can be exploited by unauthenticated remote attackers to target users of the monitoring interface.
References

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-05-08T13:49:44.094Z

Reserved: 2022-01-26T00:00:00.000Z

Link: CVE-2022-23961

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-05-08T05:16:08.700

Modified: 2026-05-08T05:16:08.700

Link: CVE-2022-23961

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-08T07:00:04Z

Weaknesses