threat
engine
.sh
Back
·
··:··
Home
/
Product
/
netgate pfsense
Product
netgate pfsense
79 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-69691
all versions
Netgate pfSense CE 2.8.0 allows code execution in the XMLRPC API via pfsense.exec_php. NOTE: the Supplier disputes this because th
9.9
CRITICAL
CVE-2025-69690
all versions
Netgate pfSense CE 2.7.2 allows code execution by using the module installer with a backup file with a serialized PHP object conta
9.1
CRITICAL
CVE-2025-34178
< 2.8.0
In pfSense CE /suricata/suricata_app_parsers.php, the value of the policy_name parameter is not sanitized of HTML-related strings
5.4
MEDIUM
CVE-2025-34177
< 2.8.0
In pfSense CE /suricata/suricata_flow_stream.php, the value of the policy_name parameter is not sanitized of HTML-related strings
5.4
MEDIUM
CVE-2025-34176
< 2.8.0
In pfSense CE /suricata/suricata_ip_reputation.php, the value of the iplist parameter is not sanitized of directory traversal-rel
4.3
MEDIUM
CVE-2025-34175
< 2.8.0
In pfSense CE /usr/local/www/suricata/suricata_filecheck.php, the value of the filehash parameter is directly displayed without s
6.1
MEDIUM
CVE-2025-34174
< 2.8.0
In pfSense CE /usr/local/www/status_traffic_totals.php, the value of the start-day parameter is not ensured to be a numeric value
5.4
MEDIUM
CVE-2025-34173
< 2.8.0
In pfSense CE /usr/local/www/snort/snort_ip_reputation.php, the value of the iplist parameter is not sanitized of directory trave
4.3
MEDIUM
CVE-2025-34172
< 2.8.0
In pfSense CE /usr/local/www/haproxy/haproxy_stats.php, the value of the showsticktablecontent parameter is displayed after being
6.1
MEDIUM
CVE-2025-53392
all versions
In Netgate pfSense CE 2.8.0, the "WebCfg - Diagnostics: Command" privilege allows reading arbitrary files via diag_command.php dlP
5.0
MEDIUM
CVE-2024-46538
all versions
A cross-site scripting (XSS) vulnerability in pfsense v2.5.2 allows attackers to execute arbitrary web scripts or HTML via a craft
4.8
MEDIUM
CVE-2023-48123
<= 2.7.0
An issue in Netgate pfSense Plus v.23.05.1 and before and pfSense CE v.2.7.0 allows a remote attacker to execute arbitrary code vi
8.8
HIGH
CVE-2023-42326
<= 2.7.0
An issue in Netgate pfSense v.2.7.0 allows a remote attacker to execute arbitrary code via a crafted request to the interfaces_gif
8.8
HIGH
CVE-2023-42327
all versions
Cross Site Scripting (XSS) vulnerability in Netgate pfSense v.2.7.0 allows a remote attacker to gain privileges via a crafted URL
5.4
MEDIUM
CVE-2023-42325
all versions
Cross Site Scripting (XSS) vulnerability in Netgate pfSense v.2.7.0 allows a remote attacker to gain privileges via a crafted url
5.4
MEDIUM
CVE-2023-29975
all versions
An issue discovered in Pfsense CE version 2.6.0 allows attackers to change the password of any user without verification.
7.2
HIGH
CVE-2023-29974
all versions
An issue discovered in Pfsense CE version 2.6.0 allows attackers to compromise user accounts via weak password requirements.
9.8
CRITICAL
CVE-2023-29973
all versions
Pfsense CE version 2.6.0 is vulnerable to No rate limit which can lead to an attacker creating multiple malicious users in firewal
4.9
MEDIUM
CVE-2020-19678
all versions
Directory Traversal vulnerability found in Pfsense v.2.1.3 and Pfsense Suricata v.1.4.6 pkg v.1.0.1 allows a remote attacker to ob
7.5
HIGH
CVE-2020-21487
all versions
Cross Site Scripting vulnerability found in Netgate pfSense 2.4.4 and ACME package v.0.6.3 allows attackers to execute arbitrary c
9.6
CRITICAL
CVE-2023-27100
all versions
Improper restriction of excessive authentication attempts in the SSHGuard component of Netgate pfSense Plus software v22.05.1 and
9.8
CRITICAL
CVE-2023-27253
all versions
A command injection vulnerability in the function restore_rrddata() of Netgate pfSense v2.7.0 allows authenticated attackers to ex
8.8
HIGH
CVE-2022-29273
<= 2.6.0
pfSense CE through 2.6.0 and pfSense Plus before 22.05 allow XSS in the WebGUI via URL Table Alias URL parameters.
6.1
MEDIUM
CVE-2022-40624
< 2.1.4_27
pfSense pfBlockerNG through 2.1.4_27 allows remote attackers to execute arbitrary OS commands as root via the HTTP Host header, a
9.8
CRITICAL
CVE-2020-21219
all versions
Cross Site Scripting (XSS) vulnerability in Netgate pf Sense 2.4.4-Release-p3 and Netgate ACME package 0.6.3 allows remote attacke
6.1
MEDIUM
CVE-2022-42247
all versions
pfSense v2.5.2 was discovered to contain a cross-site scripting (XSS) vulnerability in the browser.php component. This vulnerabili
6.1
MEDIUM
CVE-2022-26019
< 2.6.0
Improper access control vulnerability in pfSense CE and pfSense Plus (pfSense CE software versions prior to 2.6.0 and pfSense Plus
8.8
HIGH
CVE-2022-24299
< 2.6.0
Improper input validation vulnerability in pfSense CE and pfSense Plus (pfSense CE software versions prior to 2.6.0 and pfSense Pl
8.8
HIGH
CVE-2021-20729
<= 2.5.2
Cross-site scripting vulnerability in pfSense CE and pfSense Plus (pfSense CE software versions 2.5.2 and earlier, and pfSense Plu
6.1
MEDIUM
CVE-2022-21132
>= 0.1.5 and < 0.1.5_4
Directory traversal vulnerability in pfSense-pkg-WireGuard 0.1.5 versions prior to 0.1.5_4 and pfSense-pkg-W
6.5
MEDIUM
CVE-2021-41282
all versions
diag_routes.php in pfSense 2.5.2 allows sed data injection. Authenticated users are intended to be able to view data about the rou
8.8
HIGH
CVE-2022-23993
< 2.6.0
/usr/local/www/pkg.php in pfSense CE before 2.6.0 and pfSense Plus before 22.01 uses $_REQUEST['pkg_filter'] in a PHP echo call, c
6.1
MEDIUM
CVE-2020-19203
< 2.4.4
An authenticated Cross-Site Scripting (XSS) vulnerability was found in widgets/widgets/wake_on_lan_widget.php, a component of the
5.4
MEDIUM
CVE-2020-19201
<= 2.4.4
A Stored Cross-Site Scripting (XSS) vulnerability was found in status_filter_reload.php, a page in the pfSense software WebGUI, on
5.4
MEDIUM
CVE-2020-26693
all versions
A stored cross-site scripting (XSS) vulnerability was discovered in pfSense 2.4.5-p1 which allows an authenticated attacker to exe
5.4
MEDIUM
CVE-2021-27933
all versions
pfSense 2.5.0 allows XSS via the services_wol_edit.php Description field.
6.1
MEDIUM
CVE-2020-10797
< 2.4.5
An XSS vulnerability resides in the hostname field of the diag_ping.php page in pfsense before 2.4.5 version. After passing inputs
6.1
MEDIUM
CVE-2020-11457
< 2.4.5
pfSense before 2.4.5 has stored XSS in system_usermanager_addprivs.php in the WebGUI via the descr parameter (aka full name) of a
5.4
MEDIUM
CVE-2019-18667
< 0.15.7_3
/usr/local/www/freeradius_view_config.php in the freeradius3 package before 0.15.7_3 for pfSense on FreeBSD allows a user with an
6.1
MEDIUM
CVE-2019-16667
all versions
diag_command.php in pfSense 2.4.4-p3 allows CSRF via the txtCommand or txtRecallBuffer field, as demonstrated by executing OS comm
8.8
HIGH
CVE-2019-16915
< 2.4.4
An issue was discovered in pfSense through 2.4.4-p3. widgets/widgets/picture.widget.php uses the widgetkey parameter directly with
9.8
CRITICAL
CVE-2019-16914
< 2.4.4
An XSS issue was discovered in pfSense through 2.4.4-p3. In services_captiveportal_mac.php, the username and delmac parameters are
6.1
MEDIUM
CVE-2019-16701
>= 2.3.4 and < 2.4.4
pfSense through 2.3.4 through 2.4.4-p3 allows Remote Code Injection via a methodCall XML document with a pfsense.exec_php call con
8.8
HIGH
CVE-2019-12949
all versions
In pfSense 2.4.4-p2 and 2.4.4-p3, if it is possible to trick an authenticated administrator into clicking on a button on a phishin
6.1
MEDIUM
CVE-2019-12585
< 2.4.4
Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and other products, has an Arbitrary Command Execution issue in apcu
9.8
CRITICAL
CVE-2019-12584
< 2.4.4
Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and other products, has an XSS issue in apcupsd_status.php.
6.1
MEDIUM
CVE-2019-12347
all versions
In pfSense 2.4.4-p3, a stored XSS vulnerability occurs when attackers inject a payload into the Name or Description field via an a
6.1
MEDIUM
CVE-2019-11816
<= 2.4.4
Incorrect access control in the WebUI in OPNsense before version 19.1.8, and pfsense before 2.4.4-p3 allows remote authenticated u
7.2
HIGH
CVE-2018-20799
all versions
In pfSense 2.4.4_1, blocking of source IP addresses on the basis of failed HTTPS authentication is inconsistent with blocking of s
7.5
HIGH
CVE-2018-20798
all versions
The expiretable configuration in pfSense 2.4.4_1 establishes block durations that are incompatible with the block durations implem
7.5
HIGH
CVE-2018-4021
all versions
An exploitable command injection vulnerability exists in the way Netgate pfSense CE 2.4.4-RELEASE processes the parameters of a sp
7.2
HIGH
CVE-2018-4020
all versions
An exploitable command injection vulnerability exists in the way Netgate pfSense CE 2.4.4-RELEASE processes the parameters of a sp
7.2
HIGH
CVE-2018-4019
all versions
An exploitable command injection vulnerability exists in the way Netgate pfSense CE 2.4.4-RELEASE processes the parameters of a sp
7.2
HIGH
CVE-2018-16055
< 2.4.4
An authenticated command injection vulnerability exists in status_interfaces.php via dhcp_relinquish_lease() in pfSense before 2.4
8.8
HIGH
CVE-2016-10709
<= 2.2.6
pfSense before 2.3 allows remote authenticated users to execute arbitrary OS commands via a '|' character in the status_rrd_graph_
8.8
HIGH
CVE-2017-1000479
<= 2.4.1
pfSense versions 2.4.1 and lower are vulnerable to clickjacking attacks in the CSRF error page resulting in privileged execution o
8.8
HIGH
CVE-2015-6511
<= 2.2.2
Cross-site scripting (XSS) vulnerability in pfSense before 2.2.3 allows remote attackers to inject arbitrary web script or HTML vi
CVE-2015-6510
<= 2.2.2
Multiple cross-site scripting (XSS) vulnerabilities in pfSense before 2.2.3 allow remote attackers to inject arbitrary web script
CVE-2015-6509
<= 2.2.2
Multiple cross-site scripting (XSS) vulnerabilities in pfSense before 2.2.3 allow remote attackers to inject arbitrary web script
CVE-2015-6508
<= 2.2.2
Cross-site scripting (XSS) vulnerability in pfSense before 2.2.3 allows remote attackers to inject arbitrary web script or HTML vi
CVE-2015-4029
<= 2.2.2
Cross-site scripting (XSS) vulnerability in the WebGUI in pfSense before 2.2.3 allows remote attackers to inject arbitrary web scr
CVE-2015-2295
<= 2.2
Cross-site request forgery (CSRF) vulnerability in system_firmware_restorefullbackup.php in the WebGUI in pfSense before 2.2.1 all
CVE-2015-2294
<= 2.2
Multiple cross-site scripting (XSS) vulnerabilities in the WebGUI in pfSense before 2.2.1 allow remote attackers to inject arbitra
CVE-2015-1414
all versions
Integer overflow in FreeBSD before 8.4 p24, 9.x before 9.3 p10. 10.0 before p18, and 10.1 before p6 allows remote attackers to cau
CVE-2014-4696
<= 2.1.4
Multiple open redirect vulnerabilities in the Suricata package before 1.0.6 for pfSense through 2.1.4 allow remote attackers to re
CVE-2014-4695
<= 2.1.4
Multiple open redirect vulnerabilities in the Snort package before 3.0.13 for pfSense through 2.1.4 allow remote attackers to redi
CVE-2014-4694
<= 2.1.4
Multiple cross-site scripting (XSS) vulnerabilities in suricata_select_alias.php in the Suricata package before 1.0.6 for pfSense
CVE-2014-4693
<= 2.1.4
Multiple cross-site scripting (XSS) vulnerabilities in the Snort package before 3.0.13 for pfSense through 2.1.4 allow remote atta
CVE-2014-4692
<= 2.1.3
pfSense before 2.1.4, when HTTP is used, does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which m
CVE-2014-4691
<= 2.1.3
Session fixation vulnerability in pfSense before 2.1.4 allows remote attackers to hijack web sessions via a firewall login cookie.
CVE-2014-4690
<= 2.1.3
Multiple directory traversal vulnerabilities in pfSense before 2.1.4 allow (1) remote attackers to read arbitrary .info files via
CVE-2014-4689
<= 2.1.3
Absolute path traversal vulnerability in pkg_edit.php in pfSense before 2.1.4 allows remote attackers to read arbitrary XML files
CVE-2014-4688
<= 2.1.3
pfSense before 2.1.4 allows remote authenticated users to execute arbitrary commands via (1) the hostname value to diag_dns.php in
CVE-2014-4687
<= 2.1.3
Multiple cross-site scripting (XSS) vulnerabilities in pfSense before 2.1.4 allow remote attackers to inject arbitrary web script
CVE-2011-5047
<= 2.0
Cross-site scripting (XSS) vulnerability in status_rrd_graph.php in pfSense before 2.0.1 allows remote attackers to inject arbitra
CVE-2011-4197
<= 2.0
etc/inc/certs.inc in the PKI implementation in pfSense before 2.0.1 creates each X.509 certificate with a true value for the CA ba
CVE-2010-4412
all versions
Multiple cross-site scripting (XSS) vulnerabilities in pfSense 2 beta 4 allow remote attackers to inject arbitrary web script or H
CVE-2010-4246
all versions
Multiple cross-site scripting (XSS) vulnerabilities in graph.php in pfSense 1.2.3 and 2 beta 4 allow remote attackers to inject ar
CVE-2008-1182
all versions
Cross-site scripting (XSS) vulnerability in BSD Perimeter pfSense before 1.2 allows remote attackers to inject arbitrary web scrip
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin