Stored Cross Site Scripting Vulnerability in the network maps edit functionality of PandoraFMS <= Package v765 RRR.
> Vendor Homepage: https://pandorafms.com/en/
> Software Link: https://github.com/pandorafms/pandorafms
- As a low privilege user, create a network map containing name as xss payload.
- Once created, admin user must click on the edit network maps link.
- XSS payload will be executed, which could be used for stealing admin users cookie value, etc.