πŸ” CVE Alert

CVE-2026-30812

UNKNOWN 0.0

Stored Cross-Site Scripting in Event Comments via Filter Bypass

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

Improper Neutralization of Input During Web Page Generation vulnerability allows Stored Cross-Site Scripting via event comments. This issue affects Pandora FMS: from 777 through 800

CWE CWE-79
Vendor pandora fms
Product pandora fms
Published Apr 13, 2026
Last Updated Apr 13, 2026
Stay Ahead of the Next One

Get instant alerts for pandora fms pandora fms

Be the first to know when new unknown vulnerabilities affecting pandora fms pandora fms are published β€” delivered to Slack, Telegram or Discord.

Get Free Alerts β†’ Free Β· No credit card Β· 60 sec setup

Affected Versions

Pandora FMS / Pandora FMS
777 ≀ 800

References

NVD β†— CVE.org β†— EPSS Data β†—
pandorafms.com: https://pandorafms.com/en/security/common-vulnerabilities-and-exposures/

Credits

Pedro J. NΓΊΓ±ez-Cacho Fuentes <[email protected]>