Critical XSS Vulnerability in Pandora FMS v756 and Below: Remote Code Execution via Service Name Field
CVE-2021-46678 · MEDIUM Severity
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
A XSS vulnerability exist in Pandora FMS version 756 and below, that allows an attacker to perform javascript code executions via the service name field.
Learn more about our Web Application Penetration Testing UK.