6 matches found
EUVD-2025-27480
Malicious code in bioql PyPI...
CVE-2025-34172
In pfSense CE /usr/local/www/haproxy/haproxystats.php, the value of the showsticktablecontent parameter is displayed after being read from HTTP GET requests. This can enable reflected cross-site scripting when the victim is authenticated...
CVE-2025-34172 Netgate pfSense CE HAProxy Package 0.63_10 Reflected Cross-Site Scripting
In pfSense CE /usr/local/www/haproxy/haproxystats.php, the value of the showsticktablecontent parameter is displayed after being read from HTTP GET requests. This can enable reflected cross-site scripting when the victim is authenticated...
PT-2025-36932
Name of the Vulnerable Software and Affected Versions: pfSense CE affected versions not specified Description: The value of the showsticktablecontent parameter in /usr/local/www/haproxy/haproxy stats.php is displayed after being read from HTTP GET requests. This can enable reflected cross-site...
MAL-2024-6898 Malicious code in fluent-plugin-haproxy-stats (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in fluent-plugin-haproxy-stats (RubyGems)
--- -= Per source details. Do not edit below this line.=-...