Reflected Cross Site Scripting Vulnerability in PandoraFMS <= v766
> Vendor Homepage: https://pandorafms.com/en/
> Software Link: https://github.com/pandorafms/pandorafms
- Add xss payload in the search functionality present in module library section.
- Observe payload execution.
- Now share the url containing xss payload with the victim user to steal cookies, redirecting to evil website, etc.