CVE-2022-45436|Improper Neutralization of Input... - VULHUB开源网络安全威胁库

Improper Neutralization of Input... CVE-2022-45436

- AV AC AU C I A

发布： 2023-02-15

修订： 2024-11-21

CWE-79
linuxnetwork

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Artica PFMS Pandora FMS v765 on all platforms, allows Cross-Site Scripting (XSS). As a manager privilege user , create a network map containing name as xss payload. Once created, admin user must click on the edit network maps and XSS payload will be executed, which could be used for stealing admin users cookie value.

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有1条受影响产品信息

您还没有登录，登录后可查看更多

添加资源
收藏资源
问题反馈

贡献用户

暂无贡献用户

VULHUB ™

Improper Neutralization of Input... CVE-2022-45436

漏洞利用/PoC

受影响的平台与产品

贡献用户

相关漏洞清单