/usr/local/www/freeradius_view_config.php in the freeradius3 package prior to 0.15.7_3 for pfSense on FreeBSD allows a user with an XSS payload as password or username to execute arbitrary javascript code on a victim browser.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pfsense pfsense-pkg-freeradius3 |