CVE-2025-34316

Name of the Vulnerable Software and Affected Versions IPFire versions prior to 2.29 (Core Update 198)

Description IPFire versions prior to 2.29 (Core Update 198) are susceptible to a stored cross-site scripting (XSS) issue. An authenticated attacker can inject arbitrary JavaScript code through the txt mailuser and txt mailpass parameters when updating mail server settings. The application sends an HTTP POST request to the ''/cgi-bin/mail.cgi'' endpoint, where the txt mailuser and txt mailpass parameters are used. The values from these parameters are stored and displayed in the web interface without sufficient sanitization, enabling the execution of injected scripts within the context of other users viewing the mail configuration.

Recommendations Update to IPFire version 2.29 (Core Update 198) or later.