RSS   Vulnerabilities for 'Suricata package'   RSS

2014-07-02
 
CVE-2014-4696

CWE-Other
 

 
Multiple open redirect vulnerabilities in the Suricata package before 1.0.6 for pfSense through 2.1.4 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via (1) the referer parameter to suricata_rules_flowbits.php or (2) the returl parameter to suricata_select_alias.php.

 
 
CVE-2014-4694

CWE-79
 

 
Multiple cross-site scripting (XSS) vulnerabilities in suricata_select_alias.php in the Suricata package before 1.0.6 for pfSense through 2.1.4 allow remote attackers to inject arbitrary web script or HTML via unspecified variables.

 

 >>> Vendor: Pfsense 4 Products
Pfsense
Snort package
Suricata package
Pfsense-pkg-wireguard


Copyright 2024, cxsecurity.com

 

Back to Top