Cross-site Scripting (XSS) vulnerability in Syslog Section of Pandora FMS allows attacker to cause that users cookie value will be transferred to the attackers users server. This issue affects Pandora FMS v767 version and prior versions on all platforms.
History

Mon, 23 Sep 2024 16:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: INCIBE

Published: 2023-10-03T10:44:18.682Z

Updated: 2024-09-23T15:20:41.948Z

Reserved: 2023-02-14T11:29:06.263Z

Link: CVE-2023-0828

cve-icon Vulnrichment

Updated: 2024-08-02T05:24:34.587Z

cve-icon NVD

Status : Analyzed

Published: 2023-10-03T11:15:25.173

Modified: 2023-10-04T19:59:55.817

Link: CVE-2023-0828

cve-icon Redhat

No data.