Lucene search
K

5 matches found

CNVD
CNVD
added 2026/04/07 12:0 a.m.3 views

Endian Firewall name parameter cross-site scripting vulnerability

Endian Firewall is a network security firewall system from Endian. A cross-site scripting vulnerability exists in the Endian Firewall name parameter, which stems from improper cleanup of the name parameter input in /manage/qos/classes/, and can be exploited by an attacker to inject malicious...

6.4CVSS5AI score0.00168EPSS
Exploits0
CNVD
CNVD
added 2026/04/07 12:0 a.m.7 views

Endian Firewall name parameter cross-site scripting vulnerability

Endian Firewall is a network security firewall system from Endian. A cross-site scripting vulnerability exists in the Endian Firewall name parameter, which stems from improper cleanup of the name parameter input in /manage/qos/classes/, and can be exploited by an attacker to inject malicious...

6.4CVSS5AI score0.00168EPSS
Exploits0
EUVD
EUVD
added 2026/04/02 3:31 p.m.4 views

EUVD-2026-18288

Endian Firewall version 3.3.25 and prior allow stored cross-site scripting XSS via the name parameter to /manage/qos/classes/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page...

6.4CVSS5.9AI score0.00168EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/04/02 12:0 a.m.7 views

Endian Firewall 跨站脚本漏洞

Endian Firewall is a network security firewall system from Endian. A cross-site scripting vulnerability exists in the Endian Firewall name parameter, which stems from improper cleanup of the name parameter input in /manage/qos/classes/, and can be exploited by an attacker to inject malicious...

6.4CVSS5.7AI score0.00168EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/02 12:0 a.m.7 views

Endian Firewall 跨站脚本漏洞

Endian Firewall is a network security firewall system from Endian. A cross-site scripting vulnerability exists in the Endian Firewall name parameter, which stems from improper cleanup of the name parameter input in /manage/qos/classes/, and can be exploited by an attacker to inject malicious...

6.4CVSS5.7AI score0.00168EPSS
Exploits0References2
Rows per page
Query Builder