Security Advisory

CVE-2019-12347

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-05-29 18:29:16

Last updated 2024-08-04 23:17:39

Assigner mitre

State PUBLISHED

Description

In pfSense 2.4.4-p3, a stored XSS vulnerability occurs when attackers inject a payload into the Name or Description field via an acme_accountkeys_edit.php action. The vulnerability occurs due to input validation errors.

← Browse all CVEs View on cve.org ↗