6.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
35.8%
Cross Site Scripting (XSS) vulnerability in Netgate pfSense v.2.7.0 allows a remote attacker to gain privileges via a crafted URL to the getserviceproviders.php page.
docs.netgate.com/downloads/pfSense-SA-23_08.webgui.asc
www.sonarsource.com/blog/pfsense-vulnerabilities-sonarcloud/