Primary

Context

Smoothwall Express Reflected Cross-Site Scripting Vulnerability in ipblock.cgi

Vulnerability

A reflected cross-site scripting vulnerability has been identified in Smoothwall Express version 3.1-SP4-polar-x86_64-update9. This vulnerability allows unauthenticated attackers to inject malicious scripts into the ipblock.cgi endpoint by sending crafted input through the SRC_IP and COMMENT parameters in POST requests. The injected scripts are executed as arbitrary JavaScript in the browsers of users accessing the affected endpoint.

Impact

Exploitation of this vulnerability allows for reflected cross-site scripting, where injected scripts are executed in the context of the user's browser.

Reproduction

To reproduce this vulnerability, send a POST request to the ipblock.cgi endpoint with the SRC_IP and COMMENT parameters. Include a script tag in the payload, such as an alert script, to demonstrate the cross-site scripting effect.

Added: Feb 16, 2026, 6:26 PM

Updated: Feb 16, 2026, 6:26 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

1.7

exploitability

7.2

remediation

0.0

relevance

2.9

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

1.7

exploitability

7.2

remediation

0.0

relevance

2.9

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Smoothwall Express Reflected Cross-Site Scripting Vulnerability in ipblock.cgi

Vulnerability

Impact

Reproduction

Affected Products

Smoothwall Express

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating