pfSense < 2.3.4 DHCP Lease Display XSS (SA-17_04)
Medium Nessus Plugin ID 106504
SynopsisThe remote firewall host is affected by a cross-site scripting vulnerability.
DescriptionAccording to its self-reported version number, the remote pfSense install is prior to 2.3.4. It is, therefore, affected by a cross-site scripting vulnerability (XSS) as stated in the referenced vendor advisory.
SolutionUpgrade to pfSense version 2.3.4 or later.