CVE-2019-25396 | IPFire up to 2.21 Request updatexlrator.cgi MAX_DISK_USAGE/MAX_DOWNLOAD_RATE cross site scripting (Exploit 46344 / EDB-46344)

A vulnerability classified as problematic was found in IPFire up to 2.21. Affected by this issue is some unknown functionality of the file updatexlrator.cgi of the component Request Handler. The manipulation of the argument MAX_DISK_USAGE/MAX_DOWNLOAD_RATE results in cross site scripting.

This vulnerability is known as CVE-2019-25396. It is possible to launch the attack remotely. Furthermore, an exploit is available.VulDB Recent EntriesRead More