Cross Site Scripting (XSS) vulnerability in Netgate pf Sense 2.4.4-Release-p3 and Netgate ACME package 0.6.3 allows remote malicious users to to run arbitrary code via the RootFolder field to acme_certificate_edit.php page of the ACME package.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
netgate pfsense 2.4.4 |
||
netgate acme 0.6.3 |