Cross-Site Scripting (XSS) Vulnerability in Pandora FMS v767 and Prior Versions

CVE-2023-0828 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Cross-site Scripting (XSS) vulnerability in Syslog Section of Pandora FMS allows attacker to cause that users cookie value will be transferred to the attackers users server. This issue affects Pandora FMS v767 version and prior versions on all platforms.

Learn more about our Cis Benchmark Audit For Server Software.