XSS Vulnerability in Artica Pandora FMS Version 7.0 Allows Remote Code Execution

XSS Vulnerability in Artica Pandora FMS Version 7.0 Allows Remote Code Execution

CVE-2017-15936 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

In Artica Pandora FMS version 7.0, an Attacker with write Permission can create an agent with an XSS Payload; when a user enters the agent definitions page, the script will get executed.

Learn more about our User Device Pen Test.