Pfsense

pfsense

Vendor: Netgate • 49 CVEs

CVEs (49)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-46538 1Netgate 1Pfsense Oct 30, 2024 Oct 22, 2024 N/A· v4 4.8 MEDIUM· v3 N/A· v2 A cross-site scripting (XSS) vulnerability in pfsense v2.5.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the $pconfig variable at interfaces_groups_edit.php.
CVE-2023-48123 1Netgate 2Pfsense Pfsense Plus Nov 21, 2024 Dec 6, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 An issue in Netgate pfSense Plus v.23.05.1 and before and pfSense CE v.2.7.0 allows a remote attacker to execute arbitrary code via a crafted request to the packet_capture.php file.
CVE-2023-42326 1Netgate 2Pfsense Pfsense Plus Nov 21, 2024 Nov 14, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 An issue in Netgate pfSense v.2.7.0 allows a remote attacker to execute arbitrary code via a crafted request to the interfaces_gif_edit.php and interfaces_gre_edit.php components.
CVE-2023-42327 1Netgate 1Pfsense Nov 21, 2024 Nov 14, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 Cross Site Scripting (XSS) vulnerability in Netgate pfSense v.2.7.0 allows a remote attacker to gain privileges via a crafted URL to the getserviceproviders.php page.
CVE-2023-42325 1Netgate 1Pfsense Nov 21, 2024 Nov 14, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 Cross Site Scripting (XSS) vulnerability in Netgate pfSense v.2.7.0 allows a remote attacker to gain privileges via a crafted url to the status_logs_filter_dynamic.php page.
CVE-2020-21487 1Netgate 2Pfsense Pfsense Acme Package Feb 13, 2025 Apr 4, 2023 N/A· v4 9.6 CRITICAL· v3 N/A· v2 Cross Site Scripting vulnerability found in Netgate pfSense 2.4.4 and ACME package v.0.6.3 allows attackers to execute arbitrary code via the RootFolder field of acme_certificates.php.
CVE-2023-27253 1Netgate 1Pfsense Nov 21, 2024 Mar 17, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A command injection vulnerability in the function restore_rrddata() of Netgate pfSense v2.7.0 allows authenticated attackers to execute arbitrary commands via manipulating the contents of an XML file supplied to the comp...Show more A command injection vulnerability in the function restore_rrddata() of Netgate pfSense v2.7.0 allows authenticated attackers to execute arbitrary commands via manipulating the contents of an XML file supplied to the component config.xml.Show less
CVE-2022-29273 1Netgate 1Pfsense Nov 21, 2024 Feb 22, 2023 N/A· v4 6.1 MEDIUM· v3 N/A· v2 pfSense CE through 2.6.0 and pfSense Plus before 22.05 allow XSS in the WebGUI via URL Table Alias URL parameters.
CVE-2020-21219 1Netgate 2Acme Pfsense Apr 25, 2025 Dec 15, 2022 N/A· v4 6.1 MEDIUM· v3 N/A· v2 Cross Site Scripting (XSS) vulnerability in Netgate pf Sense 2.4.4-Release-p3 and Netgate ACME package 0.6.3 allows remote attackers to to run arbitrary code via the RootFolder field to acme_certificate_edit.php page of...Show more Cross Site Scripting (XSS) vulnerability in Netgate pf Sense 2.4.4-Release-p3 and Netgate ACME package 0.6.3 allows remote attackers to to run arbitrary code via the RootFolder field to acme_certificate_edit.php page of the ACME package.Show less
CVE-2022-26019 1Netgate 2Pfsense Pfsense Plus Nov 21, 2024 Mar 31, 2022 N/A· v4 8.8 HIGH· v3 8.5 HIGH· v2 Improper access control vulnerability in pfSense CE and pfSense Plus (pfSense CE software versions prior to 2.6.0 and pfSense Plus software versions prior to 22.01) allows a remote attacker with the privilege to change N...Show more Improper access control vulnerability in pfSense CE and pfSense Plus (pfSense CE software versions prior to 2.6.0 and pfSense Plus software versions prior to 22.01) allows a remote attacker with the privilege to change NTP GPS settings to rewrite existing files on the file system, which may result in arbitrary command execution.Show less
CVE-2022-24299 1Netgate 2Pfsense Pfsense Plus Nov 21, 2024 Mar 31, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Improper input validation vulnerability in pfSense CE and pfSense Plus (pfSense CE software versions prior to 2.6.0 and pfSense Plus software versions prior to 22.01) allows a remote attacker with the privilege to change...Show more Improper input validation vulnerability in pfSense CE and pfSense Plus (pfSense CE software versions prior to 2.6.0 and pfSense Plus software versions prior to 22.01) allows a remote attacker with the privilege to change OpenVPN client or server settings to execute an arbitrary command.Show less
CVE-2020-19203 1Netgate 1Pfsense Nov 21, 2024 Jul 12, 2021 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 An authenticated Cross-Site Scripting (XSS) vulnerability was found in widgets/widgets/wake_on_lan_widget.php, a component of the pfSense software WebGUI, on version 2.4.4-p2 and earlier. The widget did not encode the de...Show more An authenticated Cross-Site Scripting (XSS) vulnerability was found in widgets/widgets/wake_on_lan_widget.php, a component of the pfSense software WebGUI, on version 2.4.4-p2 and earlier. The widget did not encode the descr (description) parameter of wake-on-LAN entries in its output, leading to a possible stored XSS.Show less
CVE-2020-19201 1Netgate 1Pfsense Nov 21, 2024 Jul 12, 2021 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 A Stored Cross-Site Scripting (XSS) vulnerability was found in status_filter_reload.php, a page in the pfSense software WebGUI, on Netgate pfSense version 2.4.4-p2 and earlier. The page did not encode output from the fil...Show more A Stored Cross-Site Scripting (XSS) vulnerability was found in status_filter_reload.php, a page in the pfSense software WebGUI, on Netgate pfSense version 2.4.4-p2 and earlier. The page did not encode output from the filter reload process, and a stored XSS was possible via the descr (description) parameter on NAT rules.Show less
CVE-2020-10797 1Netgate 1Pfsense Nov 21, 2024 Apr 29, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 An XSS vulnerability resides in the hostname field of the diag_ping.php page in pfsense before 2.4.5 version. After passing inputs to the command and executing this command, the $result variable is not sanitized before i...Show more An XSS vulnerability resides in the hostname field of the diag_ping.php page in pfsense before 2.4.5 version. After passing inputs to the command and executing this command, the $result variable is not sanitized before it is printed.Show less
CVE-2020-11457 1Netgate 1Pfsense Nov 21, 2024 Apr 1, 2020 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 pfSense before 2.4.5 has stored XSS in system_usermanager_addprivs.php in the WebGUI via the descr parameter (aka full name) of a user.
CVE-2019-16667 1Netgate 1Pfsense Nov 21, 2024 Sep 26, 2019 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 diag_command.php in pfSense 2.4.4-p3 allows CSRF via the txtCommand or txtRecallBuffer field, as demonstrated by executing OS commands. This occurs because csrf_callback() produces a "CSRF token expired" error and a Try...Show more diag_command.php in pfSense 2.4.4-p3 allows CSRF via the txtCommand or txtRecallBuffer field, as demonstrated by executing OS commands. This occurs because csrf_callback() produces a "CSRF token expired" error and a Try Again button when a CSRF token is missing.Show less
CVE-2019-16915 1Netgate 1Pfsense Nov 21, 2024 Sep 26, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An issue was discovered in pfSense through 2.4.4-p3. widgets/widgets/picture.widget.php uses the widgetkey parameter directly without sanitization (e.g., a basename call) for a pathname to file_get_contents or file_put_c...Show more An issue was discovered in pfSense through 2.4.4-p3. widgets/widgets/picture.widget.php uses the widgetkey parameter directly without sanitization (e.g., a basename call) for a pathname to file_get_contents or file_put_contents.Show less
CVE-2019-16914 1Netgate 1Pfsense Nov 21, 2024 Sep 26, 2019 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 An XSS issue was discovered in pfSense through 2.4.4-p3. In services_captiveportal_mac.php, the username and delmac parameters are displayed without sanitization.
CVE-2019-16701 1Netgate 1Pfsense Nov 21, 2024 Sep 25, 2019 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 pfSense through 2.3.4 through 2.4.4-p3 allows Remote Code Injection via a methodCall XML document with a pfsense.exec_php call containing shell metacharacters in a parameter value.
CVE-2019-12949 1Netgate 1Pfsense Nov 21, 2024 Jun 25, 2019 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 In pfSense 2.4.4-p2 and 2.4.4-p3, if it is possible to trick an authenticated administrator into clicking on a button on a phishing page, an attacker can leverage XSS to upload arbitrary executable code, via diag_command...Show more In pfSense 2.4.4-p2 and 2.4.4-p3, if it is possible to trick an authenticated administrator into clicking on a button on a phishing page, an attacker can leverage XSS to upload arbitrary executable code, via diag_command.php and rrd_fetch_json.php (timePeriod parameter), to a server. Then, the remote attacker can run any command with root privileges on that server.Show less

12 3 Next