Vulnerability Details CVE-2023-41813
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Pandora FMS on all allows Cross-Site Scripting (XSS). Allows you to edit the Web Console user notification options. This issue affects Pandora FMS: from 700 through 774.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.4%
CVSS Severity
CVSS v3 Score 3.0
References
Products affected by CVE-2023-41813
-
cpe:2.3:a:pandorafms:pandora_fms:742
-
cpe:2.3:a:pandorafms:pandora_fms:746
-
cpe:2.3:a:pandorafms:pandora_fms:754
-
cpe:2.3:a:pandorafms:pandora_fms:765
-
cpe:2.3:a:pandorafms:pandora_fms:766
-
cpe:2.3:a:pandorafms:pandora_fms:767
-
cpe:2.3:a:pandorafms:pandora_fms:771
-
cpe:2.3:a:pandorafms:pandora_fms:772