2 matches found
CVE-2026-34799
Endian Firewall versions 3.3.25 and earlier are affected by a stored XSS in the remark field of /manage/dnsmasq/hosts/. An authenticated attacker can inject JavaScript that is stored and executed when other users view the page, enabling client-side script execution within the web UI context. The ...
Endian Firewall 跨站脚本漏洞
Endian Firewall is a network security firewall system from Endian. A cross-site scripting vulnerability exists in the Endian Firewall remark parameter, which stems from improperly cleaning up the input of the remark parameter in /manage/dnsmasq/hosts/, and can be exploited by an attacker to injec...