CVE-2026-34802 | Endian Firewall 3.3.25 Parameter /cgi-bin/salearn.cgi spam cross site scripting

Inserito da Angelo Barbosa | Apr 2, 2026 | CVE

A vulnerability was found in Endian Firewall 3.3.25. It has been classified as problematic. Affected by this issue is some unknown functionality of the file /cgi-bin/salearn.cgi of the component Parameter Handler. The manipulation of the argument spam leads to cross site scripting.

This vulnerability is referenced as CVE-2026-34802. Remote exploitation of the attack is possible. No exploit is available.

CVE-2026-34802 | Endian Firewall 3.3.25 Parameter /cgi-bin/salearn.cgi spam cross site scripting

Post correlati

CVE-2024-37479 | LA-Studio Element Kit for Elementor Plugin up to 1.3.8.1 on WordPress LaStudioKit Progress Bar Widget progress_type file inclusion

CVE-2021-45465 | Siemens syngo fastView BMP File Parser write-what-where condition

CVE-2024-50570 | Fortinet FortiClientMac/FortiClientLinux/FortiClientWindows cleartext storage (FG-IR-23-278)

CVE-2023-5061 | GitLab prior 16.4.4/16.5.4/16.6.2 REST API improper authorization (Issue 425521)