CVE-2019-8953

The CVE affects pfSense’s HAProxy package prior to version 0.59_16. The vulnerability is a cross-site scripting flaw exposed via the desc (Description) or table_actionsaclN parameter in haproxy_listeners.php and haproxy_listeners_edit.php. Impact is XSS (no data exfiltration detail provided in th...