CVE-2014-8629
CVE-2014-8629 affects Pandora FMS up to version 5.1 SP1, specifically the Page visualization agents. The vulnerability is an XSS flaw in the index.php endpoint where the refr parameter is returned to users without proper validation, enabling remote attackers to inject arbitrary web script or HTML...