A critical security vulnerability has been discovered in pfSense version 2.5.2, potentially allowing attackers to execute arbitrary code on affected systems. The flaw, identified as CVE-2024-46538, is a stored cross-site scripting (XSS) vulnerability that could be exploited to achieve remote code execution (RCE). The vulnerability stems from insufficient input validation in the interfaces_groups_edit.php file, where
The post PfSense Stored XSS Vulnerability Leads To RCE Attacks, PoC Published appeared first on Cyber Security News. Read More
Posted inNews