CVE-2010-4412
pfSense 2 beta 4 - Cross-Site Scripting via id Parameter in pkg_edit.php
Title source: llmExploitation Summary
EIP tracks 4 public exploits for CVE-2010-4412. PoCs published by dave b.
AI-analyzed exploit summary This exploit demonstrates a reflected XSS vulnerability in pfSense 2 Beta 4 by injecting a malicious script via the 'if' parameter in status_graph.php. The PoC uses a simple alert(1) payload to confirm the vulnerability.
Description
Multiple cross-site scripting (XSS) vulnerabilities in pfSense 2 beta 4 allow remote attackers to inject arbitrary web script or HTML via (1) the id parameter in an olsrd.xml action to pkg_edit.php, (2) the xml parameter to pkg.php, or the if parameter to (3) status_graph.php or (4) interfaces.php, a different vulnerability than CVE-2008-1182 and CVE-2010-4246.
Exploits (4)
This exploit demonstrates a reflected XSS vulnerability in pfSense 2 Beta 4 by injecting a malicious script via the 'if' parameter in status_graph.php. The PoC uses a simple alert(1) payload to confirm the vulnerability.
This exploit demonstrates a cross-site scripting (XSS) vulnerability in pfSense by injecting arbitrary JavaScript code via the 'id' parameter in the URL. The vulnerability arises due to insufficient input sanitization in the 'pkg_edit.php' script.
This exploit demonstrates a reflected XSS vulnerability in pfSense by injecting arbitrary JavaScript code via the 'xml' parameter in the pkg.php file. The payload triggers an alert dialog, proving the vulnerability.
This is a writeup describing a cross-site scripting (XSS) vulnerability in pfSense 2 Beta 4. It includes a proof-of-concept URL demonstrating the vulnerability but does not contain executable exploit code.