Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Pandora FMS ≤ 5.0 SP2 Default Credential SQL Injection RCE
Vulnerability Description
An unauthenticated SQL injection vulnerability exists in Pandora FMS version 5.0 SP2 and earlier. The mobile/index.php endpoint fails to properly sanitize user input in the loginhash_data parameter, allowing attackers to extract administrator credentials or active session tokens via crafted requests. This occurs because input is directly concatenated into an SQL query without adequate validation, enabling SQL injection. After authentication is bypassed, a second vulnerability in the File Manager component permits arbitrary PHP file uploads. The file upload functionality does not enforce MIME-type or file extension restrictions, allowing authenticated users to upload web shells into a publicly accessible directory and achieve remote code execution.
CVSS Information
N/A
Vulnerability Type
使用硬编码的凭证
Vulnerability Title
Pandora FMS 安全漏洞
Vulnerability Description
Pandora FMS是美国Pandora FMS公司的一套监控系统。该系统通过可视化的方式监控网络、服务器、虚拟基础架构和应用程序等。 Pandora FMS 5.0 SP2及之前版本存在安全漏洞,该漏洞源于loginhash_data参数未正确清理,可能导致SQL注入攻击和远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A