CVE-2019-25372 | OPNsense 19.1 diag_traceroute.php host cross site scripting (Exploit 46351 / EDB-46351)

A vulnerability identified as problematic has been detected in OPNsense 19.1. Impacted is an unknown function of the file diag_traceroute.php. Performing a manipulation of the argument host results in cross site scripting.

This vulnerability is identified as CVE-2019-25372. The attack can be initiated remotely. Additionally, an exploit exists.VulDB Recent EntriesRead More