5.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
23.4%
XSS in Artica Pandora FMS before 7.0 NG 723 allows an attacker to execute arbitrary code via a crafted βrefrβ parameter in a β/pandora_console/index.php?sec=estado&sec2=operation/agentes/estado_agente&refr=β call.
blog.hackercat.ninja/post/pandoras_box/
pandorafms.com/wp-content/uploads/2018/06/whats-new-723-EN.pdf