Description
Firewall-1 does not properly filter script tags, which allows remote attackers to bypass the "Strip Script Tags" restriction by including an extra < in front of the SCRIPT tag.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Arne Vidstrom · htmlremotemultiple
https://www.exploit-db.com/exploits/19732
Scores
EPSS
0.0184
EPSS Percentile
83.0%
Details
Status
published
Products (1)
checkpoint/firewall-1
3.0
Published
Jan 29, 2000
Tracked Since
Feb 18, 2026