Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
- EPSS 0.19%
- Published 02.07.2014 10:35:25
- Last modified 12.04.2025 10:46:40
Multiple directory traversal vulnerabilities in pfSense before 2.1.4 allow (1) remote attackers to read arbitrary .info files via a crafted path in the pkg parameter to pkg_mgr_install.php and allow (2) remote authenticated users to read arbitrary fi...
- EPSS 0.08%
- Published 02.07.2014 10:35:25
- Last modified 12.04.2025 10:46:40
Absolute path traversal vulnerability in pkg_edit.php in pfSense before 2.1.4 allows remote attackers to read arbitrary XML files via a full pathname in the xml parameter.
6.5
CVE-2014-4688
- EPSS 1.53%
- Published 02.07.2014 10:35:25
- Last modified 12.04.2025 10:46:40
pfSense before 2.1.4 allows remote authenticated users to execute arbitrary commands via (1) the hostname value to diag_dns.php in a Create Alias action, (2) the smartmonemail value to diag_smart.php, or (3) the database value to status_rrd_graph_img...