CVE-2019-25400 | IPFire up to 2.21 POST Request fwhosts.cgi cross site scripting (Exploit 46344 / EDB-46344)

A vulnerability was found in IPFire up to 2.21 and classified as problematic. Impacted is an unknown function of the file fwhosts.cgi of the component POST Request Handler. Executing a manipulation of the argument HOSTNAME/IP/SUBNET/NETREMARK/HOSTREMARK/newhost/grp_name/remark/SRV_NAME/SRV_PORT/SRVgrp_name/SRVGRP_REMARK/updatesrvgrp can lead to cross site scripting.

The identification of this vulnerability is CVE-2019-25400. The attack may be launched remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More