Primary

Context

pfSense HAProxy Package Reflected Cross-Site Scripting Vulnerability

Vulnerability

Patched

A reflected cross-site scripting vulnerability has been identified in the HAProxy package of pfSense Community Edition. The issue arises in the 'haproxy_stats.php' file, where the 'showsticktablecontent' GET parameter is displayed without proper encoding. This vulnerability can be exploited when the victim is authenticated.

Impact

Exploitation of this vulnerability allows for reflected cross-site scripting, where an attacker can inject malicious scripts that are executed in the context of the user's browser.

Reproduction

To reproduce this vulnerability, send a GET request to 'haproxy_stats.php' with the 'showsticktablecontent' parameter. The value of this parameter will be reflected back in the response without proper HTML encoding, creating an opportunity for cross-site scripting.

Remediation

The vulnerability has been addressed in a new package build that is now available for pfSense Plus 25.07.1, Plus 25.07, CE 2.8.1, and CE 2.8.0.

Added: Sep 9, 2025, 8:42 PM

Updated: Sep 9, 2025, 8:42 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

1.7

exploitability

7.0

remediation

7.7

relevance

0.5

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

1.7

exploitability

7.0

remediation

7.7

relevance

0.5

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

pfSense HAProxy Package Reflected Cross-Site Scripting Vulnerability

Vulnerability

Impact

Reproduction

Remediation

Affected Products

pfSense-pkg-haproxy

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating