Headline
CVE-2022-29273: Bug #13060: Potential XSS from URL and URL Table alias URLs - pfSense
pfSense CE through 2.6.0 and pfSense Plus before 22.05 allow XSS in the WebGUI via URL Table Alias URL parameters.
closed
Potential XSS from URL and URL Table alias URLs
Category:
Aliases / Tables
Plus Target Version:
22.05
Description
The URL from a URL or URL Table type alias is not sanitized before display on firewall_alias.php, which can potentially lead to a stored XSS when viewing the list of aliases on the URL or All tabs.
The URL from a URL table alias is also not sanitized when included in the alias popup on various firewall and NAT rule pages, but that mechanism has its own safety measures which prevent it from being a concern there. Even so, it’s best to encode it in the popup.
History
Notes
Property changes
Associated revisions
Status changed from New to Feedback
% Done changed from 0 to 100
Status changed from Feedback to Resolved
No issues on current snapshots
- Private changed from Yes to No
Also available in: Atom PDF