Smoothwall

Smoothwall Express

21 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2019-25386

Exploit
  • EPSS 0.04%
  • Veröffentlicht 16.02.2026 17:04:59
  • Zuletzt bearbeitet 20.02.2026 16:26:47

Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple reflected cross-site scripting vulnerabilities in the dmzholes.cgi script that allow attackers to inject malicious scripts through unvalidated parameters. Attackers can submit POST req...

6.1

CVE-2019-25385

Exploit
  • EPSS 0.04%
  • Veröffentlicht 16.02.2026 17:04:59
  • Zuletzt bearbeitet 20.02.2026 16:26:41

Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by manipulating the MACHINE and MACHINECOMMENT parameters. Attackers can send POST requests to t...

6.1

CVE-2019-25384

Exploit
  • EPSS 0.04%
  • Veröffentlicht 16.02.2026 17:04:58
  • Zuletzt bearbeitet 20.02.2026 16:26:36

Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple reflected cross-site scripting vulnerabilities in the portfw.cgi script that allow attackers to inject malicious scripts through unvalidated parameters. Attackers can submit POST reque...

6.1

CVE-2019-25383

Exploit
  • EPSS 0.04%
  • Veröffentlicht 16.02.2026 17:04:57
  • Zuletzt bearbeitet 20.02.2026 16:26:19

Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple reflected cross-site scripting vulnerabilities in the apcupsd.cgi script that allow attackers to inject malicious scripts through multiple POST parameters. Attackers can submit crafted...

6.1

CVE-2019-25382

Exploit
  • EPSS 0.12%
  • Veröffentlicht 16.02.2026 17:04:56
  • Zuletzt bearbeitet 20.02.2026 19:12:29

Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by manipulating the NTP_SERVER parameter. Attackers can send POST requests to th...

6.1

CVE-2019-25381

Exploit
  • EPSS 0.04%
  • Veröffentlicht 16.02.2026 17:04:55
  • Zuletzt bearbeitet 20.02.2026 16:26:07

Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple reflected cross-site scripting vulnerabilities in the hosts.cgi script that allow attackers to inject malicious scripts through unvalidated parameters. Attackers can submit POST reques...

6.1

CVE-2019-25380

Exploit
  • EPSS 0.04%
  • Veröffentlicht 16.02.2026 17:04:54
  • Zuletzt bearbeitet 20.02.2026 16:25:48

Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple reflected cross-site scripting vulnerabilities in the dhcp.cgi script that allow attackers to inject malicious scripts through multiple parameters. Attackers can submit POST requests t...

7.2

CVE-2019-25379

Exploit
  • EPSS 0.05%
  • Veröffentlicht 16.02.2026 17:04:54
  • Zuletzt bearbeitet 20.02.2026 16:30:43

Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains stored and reflected cross-site scripting vulnerabilities in the urlfilter.cgi endpoint that allow attackers to inject malicious scripts. Attackers can submit POST requests with script payloads...

6.1

CVE-2019-25378

Exploit
  • EPSS 0.04%
  • Veröffentlicht 16.02.2026 17:04:53
  • Zuletzt bearbeitet 20.02.2026 21:23:50

Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple cross-site scripting vulnerabilities in the proxy.cgi endpoint that allow attackers to inject malicious scripts through parameters including CACHE_SIZE, MAX_SIZE, MIN_SIZE, MAX_OUTGOIN...

6.1

CVE-2011-1084

  • EPSS 0.24%
  • Veröffentlicht 07.02.2020 21:15:09
  • Zuletzt bearbeitet 21.11.2024 01:25:29

A cross-site scripting (XSS) vulnerability in Smoothwall Express 3.