CVE-2012-4923

Endian Firewall 2.4 - Cross-Site Scripting via dnat.cgi createrule Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2012-4923. PoCs published by Vulnerability Research Laboratory.

AI-analyzed exploit summary The provided text describes a cross-site scripting (XSS) vulnerability in Endian Firewall, where insufficient sanitization of user-supplied data allows arbitrary script execution. The example URL demonstrates a potential attack vector.

Description

Multiple cross-site scripting (XSS) vulnerabilities in Endian Firewall 2.4 allow remote attackers to inject arbitrary web script or HTML via the (1) createrule parameter to dnat.cgi, (2) addrule parameter to dansguardian.cgi, or (3) PATH_INFO to openvpn_users.cgi.

Exploits (3)

exploitdb WRITEUP VERIFIED
by Vulnerability Research Laboratory · textremotehardware
https://www.exploit-db.com/exploits/36831

The provided text describes a cross-site scripting (XSS) vulnerability in Endian Firewall, where insufficient sanitization of user-supplied data allows arbitrary script execution. The example URL demonstrates a potential attack vector.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Theoretical
Target: Endian Firewall
No auth needed
Prerequisites: Access to the vulnerable endpoint
MITRE ATT&CK
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Vulnerability Research Laboratory · textremotehardware
https://www.exploit-db.com/exploits/36832

The provided text describes a cross-site scripting (XSS) vulnerability in Endian Firewall, where insufficient sanitization of user-supplied data allows arbitrary script execution. The example URL demonstrates a potential attack vector.

Classification
Writeup 80%
Attack Type
Xss
Complexity
Trivial
Reliability
Theoretical
Target: Endian Firewall (version not specified)
No auth needed
Prerequisites: Access to a vulnerable Endian Firewall instance
MITRE ATT&CK
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Vulnerability Research Laboratory · textremotehardware
https://www.exploit-db.com/exploits/36833

The provided text describes a cross-site scripting (XSS) vulnerability in Endian Firewall, where insufficient sanitization of user-supplied data allows arbitrary script execution. The example URL demonstrates a potential attack vector.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Theoretical
Target: Endian Firewall (version not specified)
No auth needed
Prerequisites: Access to a vulnerable Endian Firewall instance
MITRE ATT&CK
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/73330
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/52076

Scores

EPSS 0.0183
EPSS Percentile 76.3%

Details

CWE
CWE-79
Status published
Products (1)
endian/firewall 2.4
Published Sep 15, 2012
Tracked Since Feb 18, 2026