Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Stored cross-site scripting vulnerability in create event section
Vulnerability Description
Stored cross-site scripting vulnerability in the Create event section in Pandora FMS Console v766 and lower. An attacker typically exploits this vulnerability by injecting XSS payloads on popular pages of a site or passing a link to a victim, tricking them into viewing the page that contains the stored XSS payload.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L
Vulnerability Type
跨站请求伪造(CSRF)
Vulnerability Title
Artica Pandora FMS 跨站请求伪造漏洞
Vulnerability Description
Artica Pandora FMS是西班牙Artica公司的一套监控系统。该系统通过可视化的方式监控网络、服务器、虚拟基础架构和应用程序等。 Artica Pandora FMS Console v766及之前版本存在跨站请求伪造漏洞,该漏洞源于存在存储型跨站脚本漏洞。
CVSS Information
N/A
Vulnerability Type
N/A