CVE-2019-25399

MEDIUM

IPFire 2.21 Core Update 127 - Stored Cross-Site Scripting via extrahd.cgi FS PATH and UUID Parameters

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-25399. PoCs published by Ozer Goker.

AI-analyzed exploit summary This exploit demonstrates multiple reflected and stored XSS vulnerabilities in IPFire 2.21 Core Update 127. It provides specific URLs, methods, parameters, and payloads to trigger XSS in various CGI scripts.

Description

IPFire 2.21 Core Update 127 contains multiple stored cross-site scripting vulnerabilities in the extrahd.cgi script that allow attackers to inject malicious scripts through the FS, PATH, and UUID parameters. Attackers can submit POST requests with script payloads in these parameters to execute arbitrary JavaScript in the context of authenticated administrator sessions.

Exploits (1)

exploitdb WORKING POC
by Ozer Goker · textwebappscgi
https://www.exploit-db.com/exploits/46344

This exploit demonstrates multiple reflected and stored XSS vulnerabilities in IPFire 2.21 Core Update 127. It provides specific URLs, methods, parameters, and payloads to trigger XSS in various CGI scripts.

Classification
Working Poc 95%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: IPFire 2.21 Core Update 127
No auth needed
Prerequisites: Access to the target web interface
MITRE ATT&CK
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (4)

Core 4

Scores

CVSS v3 6.4
EPSS 0.0023
EPSS Percentile 13.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-79
Status published
Products (1)
ipfire/ipfire 2.21 core_update127
Published Feb 18, 2026
Tracked Since Feb 19, 2026