VYPR
Unrated severityNVD Advisory· Published Apr 29, 2020· Updated Aug 4, 2024

CVE-2020-10797

CVE-2020-10797

Description

An XSS vulnerability resides in the hostname field of the diag_ping.php page in pfsense before 2.4.5 version. After passing inputs to the command and executing this command, the $result variable is not sanitized before it is printed.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.