6 matches found
PandoraFMS 7.0NG.772 - SQL Injection
Exploit Title: PandoraFMS 7.0NG.772 - SQL Injection Date: 21/11/2023 Exploit Author: Osama Yousef Vendor Homepage: https://pandorafms.com/ Software Link: https://github.com/pandorafms/pandorafms/releases/download/v772-LTS/pandorafmsagentlinux-7.0NG.772.tar.gz Version: v7.0NG.772 Tested on: Linux...
CVE-2023-44088
creationtimestamp| type| source ---|---|--- 2023-12-29 13:27:00+00:00| seen| https://t.me/ctinow/160498 2023-12-30 01:38:58+00:00| seen| https://t.me/cibsecurity/73953 2024-01-21 13:41:11+00:00| seen| https://t.me/ctinow/170830 2025-04-11 21:02:18+00:00| seen|...
CVE-2023-44088
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Pandora FMS on all allows SQL Injection. Arbitrary SQL queries were allowed to be executed using any account with low privileges. This issue affects Pandora FMS: from 700 through 774...
CVE-2023-44088
Pandora FMS CVE-2023-44088 is an SQL injection affecting Pandora FMS versions 700–774 due to improper neutralization of special elements in SQL commands, allowing arbitrary SQL queries to be executed with low privileges from accounts with no user interaction. Exploitation details are present in c...
CVE-2023-44088 SQL Injection in Visual Console
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Pandora FMS on all allows SQL Injection. Arbitrary SQL queries were allowed to be executed using any account with low privileges. This issue affects Pandora FMS: from 700 through 774...
CVE-2023-44088 SQL Injection in Visual Console
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Pandora FMS on all allows SQL Injection. Arbitrary SQL queries were allowed to be executed using any account with low privileges. This issue affects Pandora FMS: from 700 through 774...