CVE-2025-4804 – WatchGuard Fireware OS Stored Cross-site Scripting Vulnerability

May 16, 2025

CVE ID : CVE-2025-4804

Published : May 16, 2025, 9:15 p.m. | 3 hours, 29 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (XSS or ‘Cross-site Scripting’) vulnerability in WatchGuard Fireware OS allows Stored XSS via the spamBlocker module. This vulnerability requires an authenticated administrator session to a locally managed Firebox.
This issue affects Fireware OS: from 12.0 through 12.11.1.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4805 – WatchGuard Fireware OS Stored XSS Vulnerability

Next Article CVE-2025-48188 – GNU PSPP libpspp-core.a Heap-Based Buffer Over-Read

Microsoft adds Copilot-powered debugging features for .NET in Visual Studio

Blackstone portfolio company R Systems Acquires Novigo Solutions, Strengthening its Product Engineering and Full-Stack Agentic-AI Capabilities

HoundDog.ai Launches Industry’s First Privacy-by-Design Code Scanner for AI Applications

The Double-Edged Sustainability Sword Of AI In Web Design

How VPNs are helping people evade increased censorship – and much more

Google’s AI Mode can now find restaurant reservations for you – how it works

Best early Labor Day TV deals 2025: Save up to 50% on Samsung, LG, and more

Claude wins high praise from a Supreme Court justice – is AI’s legal losing streak over?

Preserving Data Integrity with Laravel Soft Deletes for Recovery and Compliance

Preserving Data Integrity with Laravel Soft Deletes for Recovery and Compliance

Quickly Generate Forms based on your Eloquent Models with Laravel Formello

Pest 4 is Released

FOSS Weekly #25.34: Mint 22.2 Features, FreeVPN Fiasco, Windows Update Killing SSDs, AI in LibreOffice and More

FOSS Weekly #25.34: Mint 22.2 Features, FreeVPN Fiasco, Windows Update Killing SSDs, AI in LibreOffice and More

You’ll need standalone Word, PowerPoint, Excel on iOS, as Microsoft 365 app becomes a Copilot wrapper

Microsoft to Move Copilot Previews to iOS While Editing Returns to Office Apps

CVE-2025-4804 – WatchGuard Fireware OS Stored Cross-site Scripting Vulnerability

Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks

Scattered Spider Hacker Gets 10 Years, $13M Restitution for SIM Swapping Crypto Theft

CVE-2025-4466 – iSourcecode Gym Management System SQL Injection Vulnerability

Resident Evil Requiem is taking us back to Raccoon City when it launches next February

Free After Effect Templates – 49 Stunning Intros, Logo Reveals, Titles & More

Hackers access sensitive SIM card data at South Korea’s largest telecoms company

GitHub Enterprise Server Vulnerabilities Expose Risk of Code Execution and Data Leaks

Avoidant Personality Disorder (AVPD) Test – AVPDTest.com

CVE-2025-53770 – Microsoft SharePoint Server Remote Code Execution Vulnerability

Intelligent QA at Scale: How Agentic AI Delivers Faster & Safer Software Releases

CVE-2025-4804 – WatchGuard Fireware OS Stored Cross-site Scripting Vulnerability

Related Posts