2 matches found
Deciso OPNsense Cross-Site Scripting Vulnerability
Deciso OPNsense is a FreeBSD-based open source firewall and routing software from Dutch company Deciso. A cross-site scripting vulnerability exists in Deciso OPNsense versions prior to 23.7, which stems from a cross-site scripting XSS vulnerability in component /ui/cron/item/open...
PT-2023-26733 · Opnsense · Opnsense Community Edition +1
Name of the Vulnerable Software and Affected Versions: OPNsense Community Edition versions prior to 23.7 OPNsense Business Edition versions prior to 23.4.2 Description: The issue allows for XSS via the openAction in the app/controllers/OPNsense/Cron/ItemController.php file, specifically in the...