CVE-2019-25375 in OPNsenseinfo

Zusammenfassung

von MITRE • 15.02.2026

OPNsense 19.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by submitting crafted input to the mailserver parameter. Attackers can send POST requests to the monit interface with JavaScript payloads in the mailserver parameter to execute arbitrary code in users' browsers.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Zuständig

VulnCheck

Reservieren

15.02.2026

Veröffentlichung

15.02.2026

Moderieren

akzeptiert

Eintrag

VDB-346149

CPE

bereit

Exploit

Download

EPSS

0.00360

KEV

nein

Aktivitäten

very low

Quellen

Want to know what is going to be exploited?

We predict KEV entries!