OPNsense is an open source, FreeBSD-based firewall and routing software developed by Deciso Inc. A cross-site scripting vulnerability exists in versions prior to OPNsense 21.7.4. An attacker can exploit the vulnerability by returning LDAP attributes in the authentication tester to conduct cross-site scripting attacks.
CPE | Name | Operator | Version |
---|---|---|---|
deciso opnsense | lt | 21.7.4 |