Identifier
|
Related Record |
Severity
|
Date Published
|
Description | Versions Affected |
---|---|---|---|---|---|
CVE-2022-36368 | Medium | Oct 24, 2022 | Multiple stored cross-site scripting vulnerabilities in the web user interface of IPFire versions prior to 2.27 allows a remote authenticated attacker more... |
2.23, 2.5, 2.3, 2.9, 1.49, 2.1, 2.19, 2.17, 2.15
|
|
CVE-2021-33393 | High | Jun 09, 2021 | lfs/backup in IPFire 2.25-core155 does not ensure that /var/ipfire/backup/bin/backup.pl is owned by the root account. It might be owned by an unprivile more... |
2.23, 2.5, 2.3, 2.9, 1.49, 2.1, 2.19, 2.17, 2.15
|
|
CVE-2020-21142 | Medium | Jun 28, 2021 | Cross Site Scripting (XSS) vulnerabilty in IPFire 2.23 via the IPfire web UI in the mail.cgi. |
2.23
|