Lucene search
+L

7 matches found

redhatcve
redhatcve
added 2025/09/11 8:27 p.m.8 views

CVE-2025-34178

In pfSense CE /suricata/suricataappparsers.php, the value of the policyname parameter is not sanitized of HTML-related strings/characters before being directly displayed. This can result in stored cross-site scripting. The attacker must be authenticated with at least "WebCfg - Services: suricata...

5.1CVSS6.1AI score0.03396EPSS
Exploits0References1
nvd
nvd
added 2025/09/09 9:15 p.m.12 views

CVE-2025-34176

In pfSense CE /suricata/suricataipreputation.php, the value of the iplist parameter is not sanitized of directory traversal-related strings/characters. This value is directly used in a file existence check operation. While the contents of the file cannot be read, the server reveals whether the fi...

5.3CVSS0.13897EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2025/09/09 8:23 p.m.5 views

CVE-2025-34178 Netgate pfSense CE Suricata package v7.0.8_2 Stored Cross-Site Scripting

In pfSense CE /suricata/suricataappparsers.php, the value of the policyname parameter is not sanitized of HTML-related strings/characters before being directly displayed. This can result in stored cross-site scripting. The attacker must be authenticated with at least "WebCfg - Services: suricata...

5.1CVSS5.6AI score0.03396EPSS
Exploits0References3
cvelist
cvelist
added 2025/09/09 8:2 p.m.13 views

CVE-2025-34174 Netgate pfSense CE Status_Traffic_Totals Package v2.3.2_7 Stored Cross-Site Scripting

In pfSense CE /usr/local/www/statustraffictotals.php, the value of the start-day parameter is not ensured to be a numeric value or sanitized of HTML-related characters/strings before being directly displayed in the input box. This value can be saved as the default value to be displayed to all use...

5.1CVSS0.09815EPSS
Exploits0References3
cvelist
cvelist
added 2025/09/09 7:59 p.m.15 views

CVE-2025-34173 Netgate pfSense CE Snort package v4.1.6_25 Directory Traversal Information Disclosure

In pfSense CE /usr/local/www/snort/snortipreputation.php, the value of the iplist parameter is not sanitized of directory traversal-related characters/strings before being used to check if a file exists. While the contents of the file cannot be read, the server reveals whether a file exists, whic...

5.3CVSS0.00836EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2025/09/09 12:0 a.m.6 views

PT-2025-36943

Name of the Vulnerable Software and Affected Versions: pfSense CE affected versions not specified Description: The iplist parameter in /suricata/suricata ip reputation.php is not properly sanitized to prevent directory traversal attempts. This allows an authenticated attacker with “WebCfg -...

5.3CVSS6AI score0.13897EPSS
Exploits0References4
metasploit
metasploit
added 2023/07/12 7:51 p.m.522 views

pfSense Restore RRD Data Command Injection

This module exploits an authenticated command injection vulnerabilty in the "restorerrddata" function of pfSense prior to version 2.7.0 which allows an authenticated attacker with the "WebCfg - Diagnostics: Backup & Restore" privilege to execute arbitrary operating system commands as the "root"...

8.8CVSS9.6AI score0.90655EPSS
Exploits4
Rows per page
Query Builder