Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Artica PFMS Pandora FMS v765 on all allows Cross-Site Scripting (XSS). A user with edition privileges can create a Payload in the reporting dashboard module. An admin user can observe the Payload without interaction and attacker can get information.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: INCIBE
Published: 2023-02-15T00:00:00
Updated: 2024-08-03T14:09:57.064Z
Reserved: 2022-11-15T00:00:00
Link: CVE-2022-45437
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-02-15T04:15:10.893
Modified: 2023-10-18T12:15:08.917
Link: CVE-2022-45437
Redhat
No data.