Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/18 8:58 p.m.24 views

CVE-2025-4804

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in WatchGuard Fireware OS allows Stored XSS via the spamBlocker module. This vulnerability requires an authenticated administrator session to a locally managed Firebox. This issue affects...

4.8CVSS5.5AI score0.0036EPSS
Exploits0References1
NVD
NVD
added 2025/05/16 9:15 p.m.13 views

CVE-2025-4804

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in WatchGuard Fireware OS allows Stored XSS via the spamBlocker module. This vulnerability requires an authenticated administrator session to a locally managed Firebox. This issue affects...

4.8CVSS0.0036EPSS
Exploits0References1
CVE
CVE
added 2025/05/16 8:12 p.m.32 views

CVE-2025-4804

CVE-2025-4804 affects WatchGuard Fireware OS on Firebox devices, with a Stored XSS via the spamBlocker module. Affected versions are 12.0 through 12.11.1; exploitation requires an authenticated administrator session on a locally managed Firebox. Root cause is improper neutralization of input duri...

4.8CVSS5.3AI score0.0036EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/16 8:12 p.m.8 views

CVE-2025-4804 WatchGuard Firebox Stored Cross-Site-Scripting (XSS) Vulnerability in Hotpot Configuration

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in WatchGuard Fireware OS allows Stored XSS via the spamBlocker module. This vulnerability requires an authenticated administrator session to a locally managed Firebox. This issue affects...

4.8CVSS5.7AI score0.0036EPSS
Exploits0References1
Rows per page
Query Builder