Medium severity6.5NVD Advisory· Published Feb 15, 2023· Updated Jun 17, 2026
CVE-2022-45437
CVE-2022-45437
Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Artica PFMS Pandora FMS v765 on all allows Cross-Site Scripting (XSS). A user with edition privileges can create a Payload in the reporting dashboard module. An admin user can observe the Payload without interaction and attacker can get information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <= 765
- Artica PFMS/Pandora FMSv5Range: v765
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.