Cross-site Scripting (XSS) vulnerability in the Pandora FMS Special Days component allows an attacker to use it to steal the session cookie value of admin users easily with little user interaction. This issue affects Pandora FMS v767 version and prior versions on all platforms.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: INCIBE

Published: 2023-08-22T13:03:39.181Z

Updated: 2024-09-06T14:13:21.668Z

Reserved: 2023-01-25T13:49:34.265Z

Link: CVE-2023-24516

cve-icon Vulnrichment

Updated: 2024-08-02T10:56:04.230Z

cve-icon NVD

Status : Analyzed

Published: 2023-08-22T19:16:34.557

Modified: 2023-11-02T01:21:22.490

Link: CVE-2023-24516

cve-icon Redhat

No data.