VYPR
Unrated severityNVD Advisory· Published Apr 15, 2021· Updated Aug 3, 2024

Stored DOM XSS in Pi-hole Admin Web Interface

CVE-2021-29448

Description

Pi-hole is a Linux network-level advertisement and Internet tracker blocking application. The Stored XSS exists in the Pi-hole Admin portal, which can be exploited by the malicious actor with the network access to DNS server. See the referenced GitHub security advisory for patch details.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.