CVE-2025-34307 | IPFire up to 2.28 Web Interface firewalllogcountry.dat cross site scripting

A vulnerability was found in IPFire up to 2.28. It has been classified as problematic. The impacted element is an unknown function of the file /cgi-bin/logs.cgi/firewalllogcountry.dat of the component Web Interface. The manipulation leads to cross site scripting.

This vulnerability is listed as CVE-2025-34307. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More