PandoraFMS <=7.54 allows Stored XSS by placing a payload in the name field of a visual console. When a user or an administrator visits the console, the XSS payload will be executed.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-06-25T15:05:04

Updated: 2024-08-04T00:40:46.832Z

Reserved: 2021-06-25T00:00:00

Link: CVE-2021-35501

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2021-06-25T16:15:17.160

Modified: 2021-09-14T14:36:54.220

Link: CVE-2021-35501

cve-icon Redhat

No data.