CVE-2025-34313

Name of the Vulnerable Software and Affected Versions IPFire versions prior to 2.29 (Core Update 198)

Description IPFire versions prior to 2.29 (Core Update 198) are susceptible to a stored cross-site scripting (XSS) issue. An authenticated attacker can inject arbitrary JavaScript code through the QUOTA USERS parameter when creating a user quota rule. The application sends an HTTP POST request to the /cgi-bin/urlfilter.cgi endpoint with the MODE parameter set to USERQUOTA and the assigned user(s) provided in the QUOTA USERS parameter. The value of this parameter is stored and rendered in the web interface without proper sanitization, enabling injected scripts to execute in the context of other users viewing the affected quota entry.

Recommendations Update to IPFire version 2.29 (Core Update 198) or later.