CVE-2026-27508

moderate-risk

Published 2026-03-30

Smoothwall Express versions prior to 3.1 Update 13 contain a reflected cross-site scripting vulnerability in the /redirect.cgi endpoint due to improper sanitation of the url parameter. Attackers can craft malicious URLs with javascript: schemes that execute arbitrary JavaScript in victims' browsers when clicked through the unsanitized link.

Do I need to act?

0.03% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.4/10 Medium

NETWORK / LOW complexity

Affected Products (13)

Smoothwall Express

Affected Vendors

Smoothwall

References (2)

Product https://community.smoothwall.org/forum/viewtopic.php?t=45095

Third Party Advisory https://www.vulncheck.com/advisories/smoothwall-express-reflected-xss-in-redirec...

/ 100

moderate-risk

Severity 21/34 · High

Exploitability 0/34 · Minimal

Exposure 17/34 · Moderate