exploitDog

GHSA-8mgw-h8q3-3x6m

Опубликовано: 23 нояб. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.9

Описание

Cross-Site Request Forgery (CSRF) vulnerability in Pandora FMS on all allows Cross-Site Scripting (XSS). This vulnerability allowed Javascript code to be executed in the SNMP Trap Editor. This issue affects Pandora FMS: from 700 through 773.

Cross-Site Request Forgery (CSRF) vulnerability in Pandora FMS on all allows Cross-Site Scripting (XSS). This vulnerability allowed Javascript code to be executed in the SNMP Trap Editor. This issue affects Pandora FMS: from 700 through 773.

Ссылки

EPSS

Процентиль: 12%

0.00041

Низкий

5.9 Medium

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2023-41792

CVSS3: 5.9

nvd

около 2 лет назад

Cross-Site Request Forgery (CSRF) vulnerability in Pandora FMS on all allows Cross-Site Scripting (XSS). This vulnerability allowed Javascript code to be executed in the SNMP Trap Editor. This issue affects Pandora FMS: from 700 through 773.

EPSS

Процентиль: 12%

0.00041

Низкий

5.9 Medium

CVSS3

CVE ID

Дефекты

CWE-352