IPFire Cross-Site Scripting Vulnerability (CNVD-2025-27707)

IPFire is an open source Linux distribution from the IPFire organization, used primarily as a router and firewall. IPFire suffers from a cross-site scripting vulnerability that can be exploited by attackers to inject arbitrary JavaScript code...

IPFire Cross-Site Scripting Vulnerability (CNVD-2025-27703)

IPFire is an open source Linux distribution from the IPFire organization, used primarily as a router and firewall. IPFire suffers from a cross-site scripting vulnerability that stems from insufficient PROT parameter cleanup and escaping, which can be exploited by an attacker to steal a victim's...

IPFire Cross-Site Scripting Vulnerability (CNVD-2025-27635)

IPFire is an open source Linux distribution from the IPFire organization, used primarily as a router and firewall. IPFire suffers from a cross-site scripting vulnerability caused by multiple methods in the cleanhtml function that improperly validate user-supplied input. An attacker could use this...

IPFire Cross-Site Scripting Vulnerability (CNVD-2025-27706)

IPFire is an open source Linux distribution from the IPFire organization, used primarily as a router and firewall. IPFire suffers from a cross-site scripting vulnerability that stems from not properly cleaning or coding the UPDATEVALUE parameter, which can be exploited by an attacker to inject...

EUVD-2019-8646

Malware in sbrugna...

EUVD-1999-0527

Malware in sbrugna...

IPFire 安全漏洞

IPFire is an open source Linux distribution from the IPFire organization. It is primarily used as a router and firewall. A security vulnerability exists in IPFire version 2.29, which stems from logs.cgi not being cleaned of user input and could lead to the execution of arbitrary OS commands...

IPFire 安全漏洞

IPFire is an open source Linux distribution from the IPFire organization. It is primarily used as a router and firewall. A security vulnerability exists in IPFire that stems from improper validation of proxy.cgi interface inputs, which could lead to remote command execution...

CVE-2025-2546

A vulnerability classified as problematic was found in D-Link DIR-618 and DIR-605L 2.02/3.02. This vulnerability affects unknown code of the file /goform/formAdvFirewall of the component Firewall Service. The manipulation leads to improper access controls. The attack needs to be approached within...

ZeroShell kerbynet remote command execution

Added: 05/24/2021 Background Zeroshell is a Linux distribution designed for router and firewall appliances which can be administered from a web interface. Zeroshell is no longer supported. Problem A command injection vulnerability allows unauthenticated attackers to execute arbitrary commands by...

Draytek Vigor 3900 1.06 - Local Privilege Escalation

Exploit Title: Previlege escalation Date: 19/3/2013 Exploit Author: Mohammad abou hayt Vendor Homepage: http://www.draytek.com.tw/index.php?option=comk2&view=item&layout=item&id=2627&Itemid=593&lang=en Software Link: N/A Version: Vigor 3900 -Hardware V2 - firmware latest 1.06 Privilege escalation...

Draytek Vigor 3900 1.06 - Local Privilege Escalation

Draytek Vigor 3900 1.06 - Local Privilege Escalation Exploit Title: Previlege escalation Date: 19/3/2013 Exploit Author: Mohammad abou hayt Vendor Homepage: http://www.draytek.com.tw/index.php?option=comk2&view=item&layout=item&id=2627&Itemid=593&lang=en Software Link: N/A Version: Vigor 3900...

CVE-1999-0510

A router or firewall allows source routed packets from arbitrary hosts...