Lucene search
+L

197 matches found

cnvd
cnvd
added 2026/03/02 12:0 a.m.1 views

Smoothwall Express Cross-Site Scripting Vulnerability (CNVD-2026-14290)

Smoothwall Express is Smoothwall open source a GNU/Linux-based firewall operating system . Smoothwall Express has a cross-site scripting vulnerability , the vulnerability stems from the iptools.cgi endpoint IP parameters of the user-supplied data lack of effective filtering and escaping , an...

6.1CVSS5.9AI score0.00244EPSS
Exploits1References1
cnvd
cnvd
added 2026/03/02 12:0 a.m.3 views

Smoothwall Express Cross-Site Scripting Vulnerability (CNVD-2026-14286)

Smoothwall Express is Smoothwall open source a GNU/Linux-based firewall operating system . Smoothwall Express has a cross-site scripting vulnerability , the vulnerability stems from the apcupsd.cgi script multiple POST parameters on the user-supplied data lack of effective filtering and escaping ...

6.1CVSS6AI score0.00225EPSS
Exploits1References1
cnvd
cnvd
added 2026/03/02 12:0 a.m.5 views

Smoothwall Express Cross-Site Scripting Vulnerability (CNVD-2026-14354)

Smoothwall Express is Smoothwall open source a GNU/Linux-based firewall operating system . Smoothwall Express cross-site scripting vulnerability , the vulnerability stems from the outgoing.cgi endpoint in the MACHINE and MACHINECOMMENT parameters of the user-supplied data lack of effective...

6.1CVSS5.9AI score0.00225EPSS
Exploits1References1
cnvd
cnvd
added 2026/03/02 12:0 a.m.2 views

Smoothwall Express Cross-Site Scripting Vulnerability (CNVD-2026-14284)

Smoothwall Express is Smoothwall open source a GNU/Linux-based firewall operating system . Smoothwall Express cross-site scripting vulnerability , the vulnerability stems from the timedaccess.cgi endpoint MACHINES parameter on the user-supplied data lack of effective filtering and escaping , an...

6.1CVSS5.9AI score0.00244EPSS
Exploits1References1
cnvd
cnvd
added 2026/03/02 12:0 a.m.5 views

Smoothwall Express Cross-Site Scripting Vulnerability (CNVD-2026-14283)

Smoothwall Express is Smoothwall open source a GNU/Linux-based firewall operating system . Smoothwall Express cross-site scripting vulnerability , the vulnerability stems from the hosts.cgi script in the IP, HOSTNAME or COMMENT parameter on the user-supplied data lack of effective filtering and...

6.1CVSS6AI score0.00225EPSS
Exploits1References1
cnvd
cnvd
added 2026/03/02 12:0 a.m.7 views

Smoothwall Express Cross-Site Scripting Vulnerability (CNVD-2026-14287)

Smoothwall Express is Smoothwall open source a GNU/Linux-based firewall operating system . Smoothwall Express cross-site scripting vulnerability , the vulnerability stems from the ipblock.cgi endpoint of the SRCIP and COMMENT parameters of the user-supplied data lack of effective filtering and...

6.1CVSS5.9AI score0.00244EPSS
Exploits1References1
cnvd
cnvd
added 2026/03/02 12:0 a.m.5 views

Smoothwall Express Cross-Site Scripting Vulnerability (CNVD-2026-14367)

Smoothwall Express is Smoothwall open source a GNU/Linux-based firewall operating system . Smoothwall Express has a cross-site scripting vulnerability , the vulnerability stems from the xtaccess.cgi endpoint EXT, DESTPORT or COMMENT parameter on the user-supplied data lack of effective filtering...

6.1CVSS6AI score0.00244EPSS
Exploits1References1
cnvd
cnvd
added 2026/03/02 12:0 a.m.9 views

Smoothwall Express Cross-Site Scripting Vulnerability (CNVD-2026-14289)

Smoothwall Express is Smoothwall open source a GNU/Linux-based firewall operating system . Smoothwall Express has a cross-site scripting vulnerability , the vulnerability stems from the smoothinfo.cgi endpoint WRAP or SECTIONTITLE parameter on the user-supplied data lack of effective filtering an...

6.1CVSS6AI score0.00233EPSS
Exploits1References1
cnvd
cnvd
added 2026/03/02 12:0 a.m.5 views

Smoothwall Express Cross-Site Scripting Vulnerability (CNVD-2026-14374)

Smoothwall Express is Smoothwall open source a GNU/Linux-based firewall operating system . Smoothwall Express has a cross-site scripting vulnerability , the vulnerability stems from the preferences.cgi script on the HOSTNAME, KEYMAP and OPENNESS parameters of the user-supplied data lack of...

7.2CVSS5.8AI score0.00223EPSS
Exploits1References1
cnvd
cnvd
added 2026/03/02 12:0 a.m.8 views

Smoothwall Express Cross-Site Scripting Vulnerability (CNVD-2026-14285)

Smoothwall Express is Smoothwall open source a GNU/Linux-based firewall operating system . Smoothwall Express has a cross-site scripting vulnerability. The vulnerability stems from the lack of effective filtering and escaping of user-supplied data in the NTPSERVER parameter of the time.cgi...

6.1CVSS5.9AI score0.00254EPSS
Exploits1References1
cnvd
cnvd
added 2026/03/02 12:0 a.m.3 views

Smoothwall Express Cross-Site Scripting Vulnerability (CNVD-2026-14345)

Smoothwall Express is Smoothwall open source a GNU/Linux-based firewall operating system . Smoothwall Express suffers from a cross-site scripting vulnerability that originates from the interfaces.cgi script to GREENADDRESS, GREENNETMASK, REDDHCPHOSTNAME, REDADDRESS, DNS1OVERRIDE, DNS2 OVERRIDE,...

6.1CVSS5.9AI score0.00199EPSS
Exploits1References1
cnvd
cnvd
added 2026/03/02 12:0 a.m.3 views

Smoothwall Express Cross-Site Scripting Vulnerability

Smoothwall Express is Smoothwall open source a GNU/Linux-based firewall operating system . Smoothwall Express cross-site scripting vulnerability , the vulnerability stems from the modem.cgi script for INIT, HANGUP, SPEAKERON, SPEAKEROFF, TONEDIAL and PULSEDIAL parameters of the user-supplied data...

7.2CVSS5.9AI score0.00223EPSS
Exploits1References1
osv
osv
added 2026/02/16 6:19 p.m.2 views

CVE-2019-25395

Smoothwall Express 3.1-SP4-polar-x8664-update9 contains multiple stored cross-site scripting vulnerabilities in the preferences.cgi script that allow attackers to inject malicious scripts through the HOSTNAME, KEYMAP, and OPENNESS parameters. Attackers can submit POST requests with script payload...

6.1CVSS5.8AI score
Exploits0References3
nvd
nvd
added 2026/02/16 6:19 p.m.11 views

CVE-2019-25393

Smoothwall Express 3.1-SP4-polar-x8664-update9 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by exploiting insufficient input validation. Attackers can submit POST requests to the smoothinfo.cgi endpoint with script...

6.1CVSS0.00233EPSS
Exploits1References3
nvd
nvd
added 2026/02/16 6:19 p.m.8 views

CVE-2019-25394

Smoothwall Express 3.1-SP4-polar-x8664-update9 contains multiple stored cross-site scripting vulnerabilities in the modem.cgi script that allow attackers to inject malicious scripts through POST parameters. Attackers can submit crafted payloads in parameters like INIT, HANGUP, SPEAKERON,...

7.2CVSS0.00223EPSS
Exploits1References3
osv
osv
added 2026/02/16 6:19 p.m.4 views

CVE-2019-25393

Smoothwall Express 3.1-SP4-polar-x8664-update9 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by exploiting insufficient input validation. Attackers can submit POST requests to the smoothinfo.cgi endpoint with script...

6.1CVSS5.9AI score0.00233EPSS
Exploits1References3
nvd
nvd
added 2026/02/16 6:19 p.m.7 views

CVE-2019-25395

Smoothwall Express 3.1-SP4-polar-x8664-update9 contains multiple stored cross-site scripting vulnerabilities in the preferences.cgi script that allow attackers to inject malicious scripts through the HOSTNAME, KEYMAP, and OPENNESS parameters. Attackers can submit POST requests with script payload...

7.2CVSS0.00223EPSS
Exploits1References3
osv
osv
added 2026/02/16 6:19 p.m.6 views

CVE-2019-25394

Smoothwall Express 3.1-SP4-polar-x8664-update9 contains multiple stored cross-site scripting vulnerabilities in the modem.cgi script that allow attackers to inject malicious scripts through POST parameters. Attackers can submit crafted payloads in parameters like INIT, HANGUP, SPEAKERON,...

6.1CVSS5.9AI score0.00223EPSS
Exploits1References3
nvd
nvd
added 2026/02/16 6:19 p.m.10 views

CVE-2019-25386

Smoothwall Express 3.1-SP4-polar-x8664-update9 contains multiple reflected cross-site scripting vulnerabilities in the dmzholes.cgi script that allow attackers to inject malicious scripts through unvalidated parameters. Attackers can submit POST requests with script payloads in the SRCIP, DESTIP,...

6.1CVSS0.00225EPSS
Exploits1References3
nvd
nvd
added 2026/02/16 6:19 p.m.7 views

CVE-2019-25387

Smoothwall Express 3.1-SP4-polar-x8664-update9 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by submitting crafted input to the xtaccess.cgi endpoint. Attackers can inject script payloads through the EXT, DESTPORT, or...

6.1CVSS0.00244EPSS
Exploits1References3
Rows per page
Query Builder