XSS in Artica Pandora FMS before 7.0 NG 723 allows an attacker to execute arbitrary code via a crafted βrefrβ parameter in a β/pandora_console/index.php?sec=estado&sec2=operation/agentes/estado_agente&refr=β call.
CPE | Name | Operator | Version |
---|---|---|---|
artica_pandora_fms | eq | < 7.0ng723 |