CVE-2025-34175

Name of the Vulnerable Software and Affected Versions: pfSense CE (affected versions not specified)

Description: The value of the filehash parameter in /usr/local/www/suricata/suricata filecheck.php is displayed without proper sanitization for HTML-related characters and strings. This can lead to reflected cross-site scripting (XSS) if a user is authenticated.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.