Cross-Site Scripting Vulnerability in Smoothwall Express by Smoothwall
CVE-2014-9430
Currently unrated
What is CVE-2014-9430?
The Smoothwall Express 3.0 SP3 has a cross-site scripting (XSS) vulnerability located in the httpd/cgi-bin/vpn.cgi/vpnconfig.dat file. This flaw allows remote attackers to inject arbitrary web scripts or HTML into the web application via the COMMENT parameter during an Add action. Exploiting this vulnerability could allow attackers to execute malicious scripts in the context of the affected user's session, potentially leading to data theft or unauthorized access.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.