4 matches found
CVE-2023-41789
creationtimestamp| type| source ---|---|--- 2024-01-09 16:40:06+00:00| seen| https://t.me/truesecator/5271...
CVE-2023-41789
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pandora FMS on all allows Cross-Site Scripting XSS. This vulnerability allows an attacker to perform cookie hijacking and log in as that user without the need for credentials. This issue affects...
CVE-2023-41789 Unauthenticated Admin Account Takeover Via XSS
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pandora FMS on all allows Cross-Site Scripting XSS. This vulnerability allows an attacker to perform cookie hijacking and log in as that user without the need for credentials. This issue affects...
CVE-2023-41789
The CVE-2023-41789 issue is an XSS vulnerability in Pandora FMS (versions 700–773) caused by improper input neutralization during web page generation. This enables cookie hijacking and an unauthenticated user session takeover. Connected sources show multiple third-party assessments (PT Security/N...