Reflected Cross Site Scripting in Search Functionality of Module Library in Pandora FMS Console v766 and lower. This vulnerability arises on the forget password functionality in which parameter username does not proper input validation/sanitization thus results in executing malicious JavaScript payload.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: INCIBE
Published: 2023-02-15T00:00:00
Updated: 2024-08-03T14:55:07.896Z
Reserved: 2022-12-13T00:00:00
Link: CVE-2022-47373
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-02-15T04:15:11.093
Modified: 2023-02-23T19:30:07.800
Link: CVE-2022-47373
Redhat
No data.