Vulnerabilities > Pandorafms > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-11 | CVE-2020-13852 | Unrestricted Upload of File with Dangerous Type vulnerability in Pandorafms Pandora FMS 7.44 Artica Pandora FMS 7.44 allows arbitrary file upload (leading to remote command execution) via the File Manager feature. | 7.2 |
| 2020-06-11 | CVE-2020-13851 | OS Command Injection vulnerability in Pandorafms Pandora FMS 7.44 Artica Pandora FMS 7.44 allows remote command execution via the events feature. | 8.8 |
| 2020-06-11 | CVE-2020-13850 | Forced Browsing vulnerability in Pandorafms Pandora FMS 7.44 Artica Pandora FMS 7.44 has inadequate access controls on a web folder. | 7.5 |
| 2019-06-29 | CVE-2019-13035 | Unspecified vulnerability in Pandorafms Pandora FMS Artica Pandora FMS 7.0 NG before 735 suffers from local privilege escalation due to improper permissions on C:\PandoraFMS and its sub-folders, allowing standard users to create new files. | 7.8 |