Where
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how pfsense compares to other vendors in security performance

View Risk Score →

Netgate pfSense CENetgate pfSense CE 2.8.0 allows code execution in the XMLRPC API via pfsense.exec_php. NOTE: the Sup…

Risk 82
Severity
9.9
First published (updated )
CVE-2025-69691

Netgate pfSense CENetgate pfSense CE 2.7.2 allows code execution by using the module installer with a backup file with…

Risk 72
Severity
9.1
First published (updated )
CVE-2025-69690

Netgate pfSense CE SuricataNetgate pfSense CE Suricata package v7.0.8_2 Stored Cross-Site Scripting

Risk 34
Severity
5.4
First published (updated )
CVE-2025-34178

Netgate pfSense CE SuricataNetgate pfSense CE Suricata package v7.0.8_2 Stored Cross-Site Scripting

Risk 34
Severity
5.4
First published (updated )
CVE-2025-34177

Netgate pfSense CE Suricata PackageNetgate pfSense CE Suricata Package v7.0.8_2 Directory Traversal Information Disclosure

Risk 26
Severity
5.3
First published (updated )
CVE-2025-34176
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Netgate pfSense CE SuricataNetgate pfSense CE Suricata package v7.0.8_2 Reflected Cross-Site Scripting

Risk 38
Severity
6.1
First published (updated )
CVE-2025-34175

Netgate pfSense CE Status_Traffic_Totals PackageNetgate pfSense CE Status_Traffic_Totals Package v2.3.2_7 Stored Cross-Site Scripting

Risk 34
Severity
5.4
First published (updated )
CVE-2025-34174

Netgate pfSense CENetgate pfSense CE Snort package v4.1.6_25 Directory Traversal Information Disclosure

Risk 26
Severity
5.3
First published (updated )
CVE-2025-34173

Netgate pfSense CE HAProxy PackageNetgate pfSense CE HAProxy Package 0.63_10 Reflected Cross-Site Scripting

Risk 38
Severity
6.1
First published (updated )
CVE-2025-34172

Netgate pfSense CEIn Netgate pfSense CE 2.8.0, the "WebCfg - Diagnostics: Command" privilege allows reading arbitrary …

Risk 38
Severity
6.5
First published (updated )
CVE-2025-53392
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

BleepingComputerFortinet warns of new FortiSIEM RCE bugs in confusing disclosure

First published (updated )
News
BleepingComputer

BleepingComputerOver 1,450 pfSense servers exposed to RCE attacks via bug chain

First published (updated )
News
BleepingComputer

Netgate pfSenseXSS

Risk 35
Severity
5.4
First published (updated )
CVE-2023-42327

Netgate pfSenseXSS

Risk 35
Severity
5.4
First published (updated )
CVE-2023-42325

Netgate pfSenseCommand Injection

Risk 81
Severity
8.8
First published (updated )
CVE-2023-42326
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

pfSense pfSenseAn issue discovered in Pfsense CE version 2.6.0 allows attackers to change the password of any user …

Risk 66
Severity
7.2
First published (updated )
CVE-2023-29975

pfSense pfSenseAn issue discovered in Pfsense CE version 2.6.0 allows attackers to compromise user accounts via wea…

Risk 86
Severity
9.8
First published (updated )
CVE-2023-29974

pfSense pfSensePfsense CE version 2.6.0 is vulnerable to No rate limit which can lead to an attacker creating multi…

Risk 30
Severity
4.9
First published (updated )
CVE-2023-29973

OISF SuricataPath Traversal

Risk 43
Severity
7.5
First published (updated )
CVE-2020-19678

Netgate pfSense PlusImproper restriction of excessive authentication attempts in the SSHGuard component of Netgate pfSen…

Risk 86
Severity
9.8
First published (updated )
CVE-2023-27100
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

pfSense pfBlockerNGOS Command Injection

Risk 86
Severity
9.8
First published (updated )
CVE-2022-40624

pfSense pfSenseXSS

Risk 38
Severity
6.1
First published (updated )
CVE-2022-42247

Netgate pfSense PlusXSS

Risk 38
Severity
6.1
First published (updated )
CVE-2021-20729

pfSense pfSense-pkg-WireGuardPath Traversal

Risk 38
Severity
6.5
First published (updated )
CVE-2022-21132

pfSense pfSenseCommand Injection

Risk 78
Severity
9
First published (updated )
CVE-2021-41282
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

pfSense pfSenseXSS

Risk 38
Severity
6.1
First published (updated )
CVE-2022-23993

pfSense pfSenseXSS

Risk 34
Severity
5.4
First published (updated )
CVE-2020-26693

pfSense pfSenseXSS

Risk 38
Severity
6.1
First published (updated )
CVE-2021-27933

pfSense Pfsense-pkg-freeradius3XSS

Risk 38
Severity
6.1
First published (updated )
CVE-2019-18667

pfSense pfSenseOS Command Injection

Risk 78
Severity
9
First published (updated )
CVE-2016-10709
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203