VYPR
Low severity3.7NVD Advisory· Published Dec 29, 2023· Updated Jun 17, 2026

CVE-2023-41814

CVE-2023-41814

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Pandora FMS on all allows Cross-Site Scripting (XSS). Through an HTML payload (iframe tag) it is possible to carry out XSS attacks when the user receiving the messages opens their notifications. This issue affects Pandora FMS: from 700 through 774.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Pandora/Pandorallm-fuzzy
    Range: 700-774
  • Pandora FMS/Pandora FMSv5
    Range: 700

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.