← Back
2026-02-16 17:5CVE-2019-25390VulnCheck
PUBLISHED5.2CWE-79

Smoothwall Express 3.1 'interfaces.cgi' Cross-Site Scripting

Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple reflected cross-site scripting vulnerabilities in the interfaces.cgi script that allow attackers to inject malicious scripts through multiple parameters including GREEN_ADDRESS, GREEN_NETMASK, RED_DHCP_HOSTNAME, RED_ADDRESS, DNS1_OVERRIDE, DNS2_OVERRIDE, RED_MAC, RED_NETMASK, DEFAULT_GATEWAY, DNS1, and DNS2. Attackers can craft POST requests to interfaces.cgi with script payloads in these parameters to execute arbitrary JavaScript in the context of authenticated administrator sessions.

Problem type

Affected products

Smoothwall

Smoothwall Express

3.1 - AFFECTED

References

ExploitDB-46333

https://www.exploit-db.com/exploits/46333

exploit
Smoothwall Official Vendor Homepage

http://www.smoothwall.org

product
VulnCheck Advisory: Smoothwall Express 3.1 'interfaces.cgi' Cross-Site Scripting

https://www.vulncheck.com/advisories/smoothwall-express-interfacescgi-cross-site-script

third-party-advisory

GitHub Security Advisories

GHSA-5h2c-v9pg-pf7w

Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple reflected cross-site scripting...

https://github.com/advisories/GHSA-5h2c-v9pg-pf7w

Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple reflected cross-site scripting vulnerabilities in the interfaces.cgi script that allow attackers to inject malicious scripts through multiple parameters including GREEN_ADDRESS, GREEN_NETMASK, RED_DHCP_HOSTNAME, RED_ADDRESS, DNS1_OVERRIDE, DNS2_OVERRIDE, RED_MAC, RED_NETMASK, DEFAULT_GATEWAY, DNS1, and DNS2. Attackers can craft POST requests to interfaces.cgi with script payloads in these parameters to execute arbitrary JavaScript in the context of authenticated administrator sessions.

nvd.nist.gov

https://nvd.nist.gov/vuln/detail/CVE-2019-25390

exploit-db.com

https://www.exploit-db.com/exploits/46333

vulncheck.com

https://www.vulncheck.com/advisories/smoothwall-express-interfacescgi-cross-site-script

smoothwall.org

http://www.smoothwall.org

github.com

https://github.com/advisories/GHSA-5h2c-v9pg-pf7w

JSON source

https://cveawg.mitre.org/api/cve/CVE-2019-25390
Click to expand
{
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "cveMetadata": {
    "cveId": "CVE-2019-25390",
    "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10",
    "assignerShortName": "VulnCheck",
    "dateUpdated": "2026-02-16T17:05:04.134Z",
    "dateReserved": "2026-02-16T16:33:01.466Z",
    "datePublished": "2026-02-16T17:05:04.134Z",
    "state": "PUBLISHED"
  },
  "containers": {
    "cna": {
      "providerMetadata": {
        "orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10",
        "shortName": "VulnCheck",
        "dateUpdated": "2026-02-16T17:05:04.134Z"
      },
      "datePublic": "2019-02-06T00:00:00.000Z",
      "title": "Smoothwall Express 3.1 'interfaces.cgi' Cross-Site Scripting",
      "descriptions": [
        {
          "lang": "en",
          "value": "Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple reflected cross-site scripting vulnerabilities in the interfaces.cgi script that allow attackers to inject malicious scripts through multiple parameters including GREEN_ADDRESS, GREEN_NETMASK, RED_DHCP_HOSTNAME, RED_ADDRESS, DNS1_OVERRIDE, DNS2_OVERRIDE, RED_MAC, RED_NETMASK, DEFAULT_GATEWAY, DNS1, and DNS2. Attackers can craft POST requests to interfaces.cgi with script payloads in these parameters to execute arbitrary JavaScript in the context of authenticated administrator sessions."
        }
      ],
      "affected": [
        {
          "vendor": "Smoothwall",
          "product": "Smoothwall Express",
          "versions": [
            {
              "version": "3.1",
              "status": "affected"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "lang": "en",
              "description": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
              "cweId": "CWE-79",
              "type": "CWE"
            }
          ]
        }
      ],
      "references": [
        {
          "url": "https://www.exploit-db.com/exploits/46333",
          "name": "ExploitDB-46333",
          "tags": [
            "exploit"
          ]
        },
        {
          "url": "http://www.smoothwall.org",
          "name": "Smoothwall Official Vendor Homepage",
          "tags": [
            "product"
          ]
        },
        {
          "url": "https://www.vulncheck.com/advisories/smoothwall-express-interfacescgi-cross-site-script",
          "name": "VulnCheck Advisory: Smoothwall Express 3.1 'interfaces.cgi' Cross-Site Scripting",
          "tags": [
            "third-party-advisory"
          ]
        }
      ],
      "metrics": [
        {
          "format": "CVSS"
        },
        {
          "format": "CVSS",
          "cvssV3_1": {
            "version": "3.1",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "attackVector": "NETWORK",
            "attackComplexity": "LOW",
            "privilegesRequired": "LOW",
            "userInteraction": "REQUIRED",
            "scope": "CHANGED",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "availabilityImpact": "NONE",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM"
          }
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Ozer Goker",
          "type": "finder"
        }
      ]
    }
  }
}