CVE-2020-21487

Cross Site Scripting vulnerability found in Netgate pfSense 2.4.4 and ACME package v.0.6.3 allows attackers to execute arbitrary code via the RootFolder field of acmecertificates.php...

pfSense 跨站脚本漏洞

pfSense is a set of network firewalls based on FreeBSD Linux. A security vulnerability exists in Netgate pfSense version 2.4.4, ACME package v.0.6.3. An attacker can exploit this vulnerability to execute arbitrary code via the RootFolder field of acmecertificates.php...

PT-2023-11591 · Pfsense +1 · Pfsense +1

Name of the Vulnerable Software and Affected Versions: pfSense version 2.4.4 ACME package version 0.6.3 Description: A Cross Site Scripting issue allows attackers to execute arbitrary code via the RootFolder field of "acme certificates.php". Recommendations: For pfSense version 2.4.4, update the...

CVE-2020-21219

Cross Site Scripting XSS vulnerability in Netgate pf Sense 2.4.4-Release-p3 and Netgate ACME package 0.6.3 allows remote attackers to to run arbitrary code via the RootFolder field to acmecertificateedit.php page of the ACME package...

CVE-2020-21219

Cross Site Scripting XSS vulnerability in Netgate pf Sense 2.4.4-Release-p3 and Netgate ACME package 0.6.3 allows remote attackers to to run arbitrary code via the RootFolder field to acmecertificateedit.php page of the ACME package...

Netgate pfSense CE 跨站脚本漏洞

Netgate pfSense CE is a free and open source FreeBSD-based firewall and router software. A security vulnerability exists in Netgate pf Sense version 2.4.4-Release-p3, Netgate ACME package version 0.6.3. An attacker can exploit this vulnerability to execute arbitrary code via the RootFolder field ...

CVE-2007-1162

A certain ActiveX control in the Common Controls Replacement Project CCRP CCRP BrowseDialog Server ccrpbds6.dll allows remote attackers to cause a denial of service Internet Explorer 7 crash via a long 1 IsFolderAvailable or 2 RootFolder property value, different vectors than CVE-2007-0371...