Cross-site Scripting (XSS) vulnerability in the Pandora FMS Special Days component allows an attacker to use it to steal the session cookie value of admin users easily with little user interaction. This issue affects Pandora FMS v767 version and prior versions on all platforms.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: INCIBE
Published: 2023-08-22T13:03:39.181Z
Updated: 2024-09-06T14:13:21.668Z
Reserved: 2023-01-25T13:49:34.265Z
Link: CVE-2023-24516
Vulnrichment
Updated: 2024-08-02T10:56:04.230Z
NVD
Status : Analyzed
Published: 2023-08-22T19:16:34.557
Modified: 2023-11-02T01:21:22.490
Link: CVE-2023-24516
Redhat
No data.