GCVE - cpe:2.3:a:netgate:pfsense:2.4.4:p3:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:netgate:pfsense:2.4.4:p3:*:*:*:*:*:*

part: a version: 2.4.4 update: p3

Vendor	Netgate (`42bc912c-274f-5f68-8e52-e5d60c7dbf39`)
Product	Pfsense (`5aa539db-9816-5834-bdbc-2e98c3f36341`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:github/pfsense/pfsense`	purl2cpe	2026-06-01 10:11:51.848449

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2020-21219`	vulnerable	2026-06-03 14:42:04.888420	Details available Cross Site Scripting (XSS) vulnerability in Netgate pf Sense 2.4.4-Release-p3 and Netgate ACME package 0.6.3 allows remote attackers to to run arbitrary code via the RootFolder field to acme_certificate_edit.php page of the ACME package. Published: 2022-12-15T00:00:00.000Z Updated: 2025-04-25T14:34:36.701Z Open on db.gcve.eu Reference links https://github.com/pfsense/FreeBSD-ports/commit/a6f443cde51e7fcf17e51f16014d3589253284d8 https://redmine.pfsense.org/issues/9888	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-16915`	vulnerable	2026-06-03 14:39:55.532578	Details available An issue was discovered in pfSense through 2.4.4-p3. widgets/widgets/picture.widget.php uses the widgetkey parameter directly without sanitization (e.g., a basename call) for a pathname to file_get_contents or file_put_contents. Published: 2019-09-26T17:38:42.000Z Updated: 2024-08-05T01:24:48.530Z Open on db.gcve.eu Reference links https://redmine.pfsense.org/issues/9610 https://github.com/pfsense/pfsense/commit/2c544ac61ce98f716d50b8e5961d7dfba66804b5 https://www.seebug.org/vuldb/ssvid-98024	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-16914`	vulnerable	2026-06-03 14:39:55.532122	Details available An XSS issue was discovered in pfSense through 2.4.4-p3. In services_captiveportal_mac.php, the username and delmac parameters are displayed without sanitization. Published: 2019-09-26T17:38:53.000Z Updated: 2024-08-05T01:24:48.605Z Open on db.gcve.eu Reference links https://redmine.pfsense.org/issues/9609 https://github.com/pfsense/pfsense/commit/d31362b69d5d52dc196dc72f66e830cd1e6e9a4f https://www.seebug.org/vuldb/ssvid-98023	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-16701`	vulnerable	2026-06-03 14:39:55.247356	Details available pfSense through 2.3.4 through 2.4.4-p3 allows Remote Code Injection via a methodCall XML document with a pfsense.exec_php call containing shell metacharacters in a parameter value. Published: 2019-09-25T15:45:56.000Z Updated: 2024-08-05T01:17:41.164Z Open on db.gcve.eu Reference links https://github.com/pfsense/pfsense/commits/master http://packetstormsecurity.com/files/154587/pfSense-2.3.4-2.4.4-p3-Remote-Code-Injection.html https://hackernews.blog/pfsense-2-3-4-2-4-4-p3-remote-code-injection/#more	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-16667`	vulnerable	2026-06-03 14:39:55.121459	Details available diag_command.php in pfSense 2.4.4-p3 allows CSRF via the txtCommand or txtRecallBuffer field, as demonstrated by executing OS commands. This occurs because csrf_callback() produces a "CSRF token expired" error and a Try Again button when a CSRF token is missing. Published: 2019-09-26T18:38:48.000Z Updated: 2024-08-05T01:17:41.055Z Open on db.gcve.eu Reference links https://pastebin.com/TEJdu9LN http://packetstormsecurity.com/files/158614/pfSense-2.4.4-p3-Cross-Site-Request-Forgery.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-12949`	vulnerable	2026-06-03 14:39:36.335695	Details available In pfSense 2.4.4-p2 and 2.4.4-p3, if it is possible to trick an authenticated administrator into clicking on a button on a phishing page, an attacker can leverage XSS to upload arbitrary executable code, via diag_command.php and rrd_fetch_json.php (timePeriod parameter), to a server. Then, the remote attacker can run any command with root privileges on that server. Published: 2019-06-25T10:55:17.000Z Updated: 2024-08-04T23:32:55.584Z Open on db.gcve.eu Reference links https://github.com/tarantula-team/CVE-2019-12949	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-12585`	vulnerable	2026-06-03 14:39:35.080019	Details available Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and other products, has an Arbitrary Command Execution issue in apcupsd_status.php. Published: 2019-06-03T02:28:08.000Z Updated: 2024-08-04T23:24:38.689Z Open on db.gcve.eu Reference links https://github.com/pfsense/FreeBSD-ports/commit/b492c0ea47aba8dde2f14183e71498ba207594e3 https://redmine.pfsense.org/issues/9556 https://ctrsec.io/index.php/2019/05/28/cve-2019-12584-12585-command-injection-vulnerability-on-pfsense-2-4-4-release-p3/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-12584`	vulnerable	2026-06-03 14:39:35.079506	Details available Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and other products, has an XSS issue in apcupsd_status.php. Published: 2019-06-03T02:27:47.000Z Updated: 2024-08-04T23:24:39.165Z Open on db.gcve.eu Reference links https://github.com/pfsense/FreeBSD-ports/commit/b492c0ea47aba8dde2f14183e71498ba207594e3 https://redmine.pfsense.org/issues/9556 https://ctrsec.io/index.php/2019/05/28/cve-2019-12584-12585-command-injection-vulnerability-on-pfsense-2-4-4-release-p3/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-12347`	vulnerable	2026-06-03 14:39:34.666532	Details available In pfSense 2.4.4-p3, a stored XSS vulnerability occurs when attackers inject a payload into the Name or Description field via an acme_accountkeys_edit.php action. The vulnerability occurs due to input validation errors. Published: 2019-05-29T18:29:16.000Z Updated: 2024-08-04T23:17:39.907Z Open on db.gcve.eu Reference links https://redmine.pfsense.org/issues/9554#change-40729 https://www.pfsense.org/download/ https://ctrsec.io/index.php/2019/05/28/stored-xss-acme-pfsense-2-4-4-p3/ http://packetstormsecurity.com/files/153112/pfSense-2.4.4-p3-Cross-Site-Scripting.html https://github.com/pfsense/FreeBSD-ports/commit/504909564079e540689dbdbed3a579483c614275	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.