CVE-2025-34318

Name of the Vulnerable Software and Affected Versions IPFire versions prior to 2.29 (Core Update 198)

Description IPFire versions prior to 2.29 (Core Update 198) are susceptible to a stored cross-site scripting (XSS) issue. An authenticated attacker can inject arbitrary JavaScript code through the TLS HOSTNAME, UPSTREAM USER, UPSTREAM PASSWORD, ADMIN MAIL ADDRESS, and ADMIN PASSWORD parameters. This occurs when adding a new DNS entry via an HTTP POST request to the /cgi-bin/dns.cgi endpoint. The application stores and renders these values in the web interface without proper sanitization or encoding, leading to script execution in the context of other users viewing the DNS configuration.

Recommendations Update to IPFire version 2.29 (Core Update 198) or later.