CVE-2023-44275 - XSS Vulnerability in OPNsense Dashboard (index.php column_count parameter)
A recent vulnerability, CVE-2023-44275, has been discovered in OPNsense firewall software, which could allow an attacker to execute malicious JavaScript code through a Cross-Site Scripting
CVE-2023-44276 - XSS in OPNsense Prior to 23.7.5 via `index.php` Sequence Parameter – What You Need To Know
If you are running OPNsense firewall before version 23.7.5, this post is for you. In late 2023, a serious vulnerability—CVE-2023-44276—was found
CVE-2023-39006 - Input Sanitization Flaw in OPNsense Crash Reporter (crash_reporter.php) – Deep Dive and Exploit Breakdown
OPNsense is a well-known open-source firewall and routing platform based on FreeBSD, loved by home lab enthusiasts and professional sysadmins alike. However, even the best
CVE-2023-38998 - Open Redirect in OPNsense <23.7 — What It Means and How Attackers Can Exploit It
Security vulnerabilities can sometimes seem complicated, but some are dangerously simple. CVE-2023-38998 is a perfect example. Found in the OPNsense firewall before version 23.7,
CVE-2023-38999 - How a Simple CSRF Flaw in OPNsense Could Shut Down Your Firewall
Security vulnerabilities can lurk in unexpected places, sometimes even in the control panels that protect our networks. CVE-2023-38999 is a recent and serious flaw found
Episode
00:00:00
00:00:00