📦 Smoothwall Express

This stored XSS vulnerability in Smoothwall Express allows attackers to inject malicious JavaScript through modem.cgi POST parameters. When users access affected pages, the stored scripts execute in t...

This stored and reflected XSS vulnerability in Smoothwall Express allows attackers to inject malicious JavaScript via the urlfilter.cgi endpoint. When exploited, it enables arbitrary script execution ...

This reflected cross-site scripting vulnerability in Smoothwall Express allows unauthenticated attackers to inject malicious JavaScript via crafted POST requests to the xtaccess.cgi endpoint. When vic...

This reflected cross-site scripting vulnerability in Smoothwall Express allows unauthenticated attackers to inject malicious JavaScript into users' browsers by manipulating the MACHINES parameter in r...

Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains a reflected cross-site scripting vulnerability in the iptools.cgi endpoint. Unauthenticated attackers can inject malicious JavaScript via the I...

This vulnerability allows attackers to inject malicious JavaScript into Smoothwall Express web interface pages through unvalidated parameters in the hosts.cgi script. When users view the affected page...

Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains a reflected cross-site scripting vulnerability in the outgoing.cgi endpoint. Attackers can inject malicious JavaScript via MACHINE and MACHINEC...

This CVE describes multiple reflected cross-site scripting (XSS) vulnerabilities in Smoothwall Express's apcupsd.cgi script. Attackers can inject malicious JavaScript through various POST parameters, ...

This CVE describes multiple cross-site scripting vulnerabilities in Smoothwall Express 3.1's proxy.cgi endpoint. Attackers can inject malicious JavaScript through proxy configuration parameters, which...