Lucene search
K

7 matches found

CNVD
CNVD
added 2026/04/07 12:0 a.m.3 views

Endian Firewall remark parameter cross-site scripting vulnerability

Endian Firewall is a network security firewall system from Endian. A cross-site scripting vulnerability exists in the Endian Firewall remark parameter, which stems from improperly cleaning up the input of the remark parameter in /manage/dnsmasq/hosts/, and can be exploited by an attacker to injec...

6.4CVSS5AI score0.00168EPSS
Exploits0
EUVD
EUVD
added 2026/04/02 3:31 p.m.8 views

EUVD-2026-18280

Endian Firewall version 3.3.25 and prior allow stored cross-site scripting XSS via the remark parameter to /manage/dnsmasq/hosts/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page...

6.4CVSS5.9AI score0.00168EPSS
Exploits0References3
NVD
NVD
added 2026/04/02 3:16 p.m.4 views

CVE-2026-34799

Endian Firewall version 3.3.25 and prior allow stored cross-site scripting XSS via the remark parameter to /manage/dnsmasq/hosts/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page...

6.4CVSS0.00168EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/02 2:45 p.m.22 views

CVE-2026-34799 Endian Firewall /manage/dnsmasq/hosts/ remark Stored Cross-Site Scripting

Endian Firewall version 3.3.25 and prior allow stored cross-site scripting XSS via the remark parameter to /manage/dnsmasq/hosts/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page...

6.4CVSS0.00168EPSS
Exploits0References2
CVE
CVE
added 2026/04/02 2:45 p.m.16 views

CVE-2026-34799

Endian Firewall versions 3.3.25 and earlier are affected by a stored XSS in the remark field of /manage/dnsmasq/hosts/. An authenticated attacker can inject JavaScript that is stored and executed when other users view the page, enabling client-side script execution within the web UI context. The ...

6.4CVSS5.9AI score0.00168EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/02 2:45 p.m.4 views

CVE-2026-34799

Endian Firewall version 3.3.25 and prior allow stored cross-site scripting XSS via the remark parameter to /manage/dnsmasq/hosts/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page...

6.4CVSS5.9AI score0.00168EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2026/04/02 12:0 a.m.6 views

Endian Firewall 跨站脚本漏洞

Endian Firewall is a network security firewall system from Endian. A cross-site scripting vulnerability exists in the Endian Firewall remark parameter, which stems from improperly cleaning up the input of the remark parameter in /manage/dnsmasq/hosts/, and can be exploited by an attacker to injec...

6.4CVSS5.7AI score0.00168EPSS
Exploits0References2
Rows per page
Query Builder