Pandorafms

Pandora Fms

57 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2020-13854

Exploit
  • EPSS 0.33%
  • Published 11.06.2020 03:15:10
  • Last modified 21.11.2024 05:02:00

Artica Pandora FMS 7.44 allows privilege escalation.

5.4

CVE-2020-13853

Exploit
  • EPSS 0.29%
  • Published 11.06.2020 03:15:10
  • Last modified 21.11.2024 05:02:00

Artica Pandora FMS 7.44 has persistent XSS in the Messages feature.

9

CVE-2020-13852

Exploit
  • EPSS 37.45%
  • Published 11.06.2020 03:15:10
  • Last modified 21.11.2024 05:02:00

Artica Pandora FMS 7.44 allows arbitrary file upload (leading to remote command execution) via the File Manager feature.

9

CVE-2020-13851

Exploit
  • EPSS 92.99%
  • Published 11.06.2020 03:15:10
  • Last modified 21.11.2024 05:02:00

Artica Pandora FMS 7.44 allows remote command execution via the events feature.

7.5

CVE-2020-13850

Exploit
  • EPSS 0.76%
  • Published 11.06.2020 03:15:09
  • Last modified 21.11.2024 05:02:00

Artica Pandora FMS 7.44 has inadequate access controls on a web folder.

5.4

CVE-2019-19968

Exploit
  • EPSS 0.31%
  • Published 04.02.2020 15:15:11
  • Last modified 21.11.2024 04:35:46

PandoraFMS 742 suffers from multiple XSS vulnerabilities, affecting the Agent Management, Report Builder, and Graph Builder components. An authenticated user can inject dangerous content into a data store that is later read and included in dynamic co...

7.8

CVE-2019-13035

  • EPSS 0.11%
  • Published 29.06.2019 13:15:08
  • Last modified 21.11.2024 04:24:05

Artica Pandora FMS 7.0 NG before 735 suffers from local privilege escalation due to improper permissions on C:\PandoraFMS and its sub-folders, allowing standard users to create new files. Moreover, the Apache service httpd.exe will try to execute cmd...