CVE-2026-34818 | Endian Firewall 3.3.25 Parameter localdomains remark cross site scripting

Inserito da Angelo Barbosa | Apr 2, 2026 | CVE

A vulnerability described as problematic has been identified in Endian Firewall 3.3.25. Affected by this vulnerability is an unknown functionality of the file /manage/dnsmasq/localdomains/ of the component Parameter Handler. Such manipulation of the argument remark leads to cross site scripting.

This vulnerability is documented as CVE-2026-34818. The attack can be executed remotely. There is not any exploit available.

CVE-2026-34818 | Endian Firewall 3.3.25 Parameter localdomains remark cross site scripting

Post correlati

CVE-2026-20412 | MediaTek MT8793 cameraisp out-of-bounds write (MSV-5733 / ALPS10351676)

CVE-2023-49708 | Joomstar Starshop Component 1.0.0-1.0.9 on Joomla sql injection

CVE-2022-49986 | Linux Kernel up to 4.19.256/5.4.211/5.10.139/5.15.63/5.19.5 scsi kernel/workqueue.c storvsc_error_wq deadlock

CVE-2024-11342 | Skt NURCaptcha Plugin up to 3.5.0 on WordPress cross site scripting