Unrated severityNVD Advisory· Published Dec 7, 2010· Updated Jun 16, 2026
CVE-2010-4246
CVE-2010-4246
Description
Multiple cross-site scripting (XSS) vulnerabilities in graph.php in pfSense 1.2.3 and 2 beta 4 allow remote attackers to inject arbitrary web script or HTML via the (1) ifnum or (2) ifname parameter, a different vulnerability than CVE-2008-1182.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:bsdperimeter:pfsense:1.2.3:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:bsdperimeter:pfsense:1.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:bsdperimeter:pfsense:2.0:beta4:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.