Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pandorafms pandora fms vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-0507
Found a potential security vulnerability inside the Pandora API. Affected Pandora FMS version range: all versions of NG version, up to OUM 759. This vulnerability could allow an attacker with authenticated IP to inject SQL.
Pandorafms Pandora Fms
9.8
CVSSv3
CVE-2021-34074
PandoraFMS <=7.54 allows arbitrary file upload, it leading to remote command execution via the File Manager. To bypass the built-in protection, a relative path is used in the requests.
Pandorafms Pandora Fms
5.4
CVSSv3
CVE-2021-35501
PandoraFMS <=7.54 allows Stored XSS by placing a payload in the name field of a visual console. When a user or an administrator visits the console, the XSS payload will be executed.
Pandorafms Pandora Fms
9
CVSSv3
CVE-2020-11749
Pandora FMS 7.0 NG <= 746 suffers from Multiple XSS vulnerabilities in different browser views. A network administrator scanning a SNMP device can trigger a Cross Site Scripting (XSS), which can run arbitrary code to allow Remote Code Execution as root or apache2.
Pandorafms Pandora Fms
8.8
CVSSv3
CVE-2020-13851
Artica Pandora FMS 7.44 allows remote command execution via the events feature.
Pandorafms Pandora Fms 7.44
1 Metasploit module
1 Github repository
7.2
CVSSv3
CVE-2020-13855
Artica Pandora FMS 7.44 allows arbitrary file upload (leading to remote command execution) via the File Repository Manager feature.
Pandorafms Pandora Fms 7.44
7.5
CVSSv3
CVE-2020-13850
Artica Pandora FMS 7.44 has inadequate access controls on a web folder.
Pandorafms Pandora Fms 7.44
7.2
CVSSv3
CVE-2020-13852
Artica Pandora FMS 7.44 allows arbitrary file upload (leading to remote command execution) via the File Manager feature.
Pandorafms Pandora Fms 7.44
5.4
CVSSv3
CVE-2020-13853
Artica Pandora FMS 7.44 has persistent XSS in the Messages feature.
Pandorafms Pandora Fms 7.44
9.8
CVSSv3
CVE-2020-13854
Artica Pandora FMS 7.44 allows privilege escalation.
Pandorafms Pandora Fms 7.44
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »