Security Advisory

CVE-2025-50976

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-26 00:00:00

Last updated 2025-08-27 16:20:49

Assigner mitre

State PUBLISHED

Description

IPFire 2.29 DNS management interface (dns.cgi) fails to properly sanitize user-supplied input in the NAMESERVER, REMARK, and TLS_HOSTNAME query parameters, resulting in a reflected cross-site scripting (XSS) vulnerability.

← Browse all CVEs View on cve.org ↗