Multiple Cross-Site Scripting Vulnerabilities in pfSense
pfSense is a free, open-source customized version of FreeBSD designed for use as a firewall and router. Multiple cross-site scripting vulnerabilities exist in pfSense. The vulnerabilities are caused by passing the "queue" HTTP GET parameter to the "/firewallshaper.php" script, the "if" and...