CVE-2026-34816
Endian Firewall 3.3.25 and prior is affected by a stored cross-site scripting (XSS) vulnerability via the domain parameter in /manage/smtpscan/domainrouting/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page. The descrip...