XSS Vulnerability in Pandora FMS Version 756 and Below: Event Filter Name Field Code Execution

XSS Vulnerability in Pandora FMS Version 756 and Below: Event Filter Name Field Code Execution

CVE-2021-46677 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

A XSS vulnerability exist in Pandora FMS version 756 and below, that allows an attacker to perform javascript code executions via the event filter name field.

Learn more about our Web Application Penetration Testing UK.