CVE-2019-25384

Name of the Vulnerable Software and Affected Versions Smoothwall Express version 3.1-SP4-polar-x86 64-update9

Description The software contains multiple reflected cross-site scripting issues within the portfw.cgi script. Attackers can inject malicious scripts through unvalidated parameters by submitting POST requests. Specifically, script payloads can be included in the EXT, SRC PORT SEL, SRC PORT, DEST IP, DEST PORT SEL, or COMMENT parameters. Successful exploitation allows attackers to execute arbitrary JavaScript in users' browsers.

Recommendations Apply input validation and sanitization to all parameters accepted by the portfw.cgi script, including EXT, SRC PORT SEL, SRC PORT, DEST IP, DEST PORT SEL, and COMMENT.