878 matches found
CVE-2010-4246
Multiple cross-site scripting XSS vulnerabilities in graph.php in pfSense 1.2.3 and 2 beta 4 allow remote attackers to inject arbitrary web script or HTML via the 1 ifnum or 2 ifname parameter, a different vulnerability than CVE-2008-1182...
CVE-2010-4412
CVE-2010-4412 describes multiple cross-site scripting (XSS) vulnerabilities in pfSense 2 beta 4. The issues allow remote attackers to inject arbitrary web script or HTML via (1) id in olsrd.xml action to pkg_edit.php, (2) xml in pkg.php, or (3) if in status_graph.php, or (4) interfaces.php. The r...
pfSense - status_graph.php?if Cross-Site Scripting
pfSense - statusgraph.php?if Cross-Site Scripting source: https://www.securityfocus.com/bid/45272/info pfSense is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script cod...
pfSense - interfaces.php?if Cross-Site Scripting
pfSense - interfaces.php?if Cross-Site Scripting source: https://www.securityfocus.com/bid/45272/info pfSense is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code...
pfSense - pkg_edit.php?id Cross-Site Scripting
pfSense - pkgedit.php?id Cross-Site Scripting source: https://www.securityfocus.com/bid/45272/info pfSense is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in...
pfSense Cross Site Scripting
"Those who cannot learn from history are doomed to repeat it." - George Santayana http://cvstrac.pfsense.org/chngview?cn=20994 "Comment: Make scripts XSS input safe. " Date: 2008-Feb-11 23:33:24 local 2008-Feb-12 04:33:24 UTC So in 2010, pfsense 2 beta 4: ... xss - pkgedit.php...
pfSense - pkg.php?xml Cross-Site Scripting
pfSense - pkg.php?xml Cross-Site Scripting source: https://www.securityfocus.com/bid/45272/info pfSense is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in th...
pfSense - 'pkg_edit.php?id' Cross-Site Scripting
source: https://www.securityfocus.com/bid/45272/info pfSense is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...
pfSense - 'pkg.php?xml' Cross-Site Scripting
source: https://www.securityfocus.com/bid/45272/info pfSense is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...
pfSense - 'interfaces.php?if' Cross-Site Scripting
source: https://www.securityfocus.com/bid/45272/info pfSense is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...
pfSense - 'status_graph.php?if' Cross-Site Scripting
source: https://www.securityfocus.com/bid/45272/info pfSense is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...
pfSense 2 Beta 4 - graph.php Multiple Cross-Site Scripting Vulnerabilities
pfSense 2 Beta 4 - graph.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/44738/info pfSense is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...
pfSense 2 Beta 4 - 'graph.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/44738/info pfSense is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...
nat-pmp-info NSE Script
Gets the routers WAN IP using the NAT Port Mapping Protocol NAT-PMP. The NAT-PMP protocol is supported by a broad range of routers including: Apple AirPort Express Apple AirPort Extreme Apple Time Capsule DD-WRT OpenWrt v8.09 or higher, with MiniUPnP daemon pfSense v2.0 Tarifa firmware Linksys...
Cross site scripting
Cross-site scripting XSS vulnerability in BSD Perimeter pfSense before 1.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2008-1182
Cross-site scripting XSS vulnerability in BSD Perimeter pfSense before 1.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2008-1182
Cross-site scripting XSS vulnerability in BSD Perimeter pfSense before 1.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2008-1182
Technical details for CVE-2008-1182 are not publicly available in the provided documents. Monitor for updates.