Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cross-Site Request en Bulk operation (User operation)
Vulnerability Description
Pandora FMS v7.0NG.759 allows Cross-Site Request Forgery in Bulk operation (User operation) resulting in elevation of privilege to Administrator group.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N
Vulnerability Type
跨站请求伪造(CSRF)
Vulnerability Title
Artica Pandora FMS 跨站请求伪造漏洞
Vulnerability Description
Artica Pandora FMS是西班牙Artica公司的一套监控系统。该系统通过可视化的方式监控网络、服务器、虚拟基础架构和应用程序等。 Artica Pandora FMS 存在跨站请求伪造漏洞,该漏洞源于Pandora FMS v7.0NG.759 允许在批量操作(用户操作)中进行跨站点请求伪造,从而将权限提升到管理员组。
CVSS Information
N/A
Vulnerability Type
N/A