CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

NVD•added 2026/02/18 10:16 p.m.•2 views

CVE-2019-25399

IPFire 2.21 Core Update 127 contains multiple stored cross-site scripting vulnerabilities in the extrahd.cgi script that allow attackers to inject malicious scripts through the FS, PATH, and UUID parameters. Attackers can submit POST requests with script payloads in these parameters to execute...

6.4CVSS0.00058EPSS

Exploits1References4

CVE•added 2026/02/18 8:59 p.m.•5 views

CVE-2019-25399

IPFire 2.21 Core Update 127 contains multiple stored XSS vulnerabilities in the extrahd.cgi script. Attackers can submit POST requests with script payloads in the FS, PATH, and UUID parameters, enabling execution of arbitrary JavaScript in the context of authenticated administrator sessions. The ...

6.4CVSS5.6AI score0.00058EPSS

Exploits1References4Affected Software1

Cvelist•added 2026/02/18 8:59 p.m.•21 views

CVE-2019-25399 IPFire 2.21 Core Update 127 Stored XSS via extrahd.cgi

6.4CVSS0.00058EPSS

Exploits1References4

Vulnrichment•added 2026/02/18 8:59 p.m.•2 views

CVE-2019-25399 IPFire 2.21 Core Update 127 Stored XSS via extrahd.cgi

6.4CVSS5.6AI score0.00058EPSS

Exploits1References4

CNNVD•added 2026/02/18 12:0 a.m.•5 views

IPFire 跨站脚本漏洞

IPFire is an open-source Linux distribution developed by the IPFire organization. It is primarily used as a router and firewall. IPFire has a cross-site scripting vulnerability, which stems from insufficient validation of input parameters for FS, PATH, and UUID in the extrahd.cgi script. This...

6.4CVSS5.6AI score0.00058EPSS

Exploits1References4

Positive Technologies•added 2026/02/18 12:0 a.m.•2 views

PT-2026-20501

6.4CVSS5.6AI score0.00058EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by