Medium severity5.4NVD Advisory· Published Jun 25, 2021· Updated Jun 17, 2026
CVE-2021-35501
CVE-2021-35501
Description
PandoraFMS <=7.54 allows Stored XSS by placing a payload in the name field of a visual console. When a user or an administrator visits the console, the XSS payload will be executed.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- PandoraFMS/PandoraFMSdescription
- Range: <=7.54
Patches
Vulnerability mechanics
References
2- packetstormsecurity.com/files/163466/Pandora-FMS-7.54-Cross-Site-Scripting.htmlnvdExploitThird Party AdvisoryVDB Entry
- k4m1ll0.com/cve-pandorafms754-chained-xss-rce.htmlnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.