CVE-2023-0828
Stored Cross Site Scripting in syslog section
Cross-site Scripting (XSS) vulnerability in Syslog Section of Pandora FMS allows attacker to cause that users cookie value will be transferred to the attackers users server. This issue affects Pandora FMS v767 version and prior versions on all platforms.
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:L
Affected products
Artica PFMS · Pandora FMSWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →