Vigil@nce - pfSense: multiple Cross Site Scripting in the captive portal
April 2017 by Vigil@nce
This bulletin was written by Vigil@nce : https://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
Impacted products: pfSense.
Creation date: 21/02/2017.
DESCRIPTION OF THE VULNERABILITY
The pfSense product offers a web service.
However, data processed in the pages "status_captiveportal.php", "status_captiveportal_expire.php", "status_captiveportal_test.php", "status_captiveportal_voucher_roll.php" and "status_captiveportal_vouchers.php" are not filtered before beging inserted in generated HTML documents.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN