7 matches found
EUVD-2015-4731
Malware in sbrugna...
DreamBox DM500-S XSS Vulnerability (Jun 2015)
DreamBox DM500-S devices are prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Dream Multimedia DreamBox DM500-S Cross-Site Scripting Vulnerability
Dream Multimedia DreamBox DM500-S is a Linux-based digital TV set-top box receiver from Dream Multimedia, Germany. A cross-site scripting vulnerability exists in the Dream Multimedia DreamBox DM500-S. The vulnerability can be exploited by a remote attacker to inject arbitrary web script or HTML v...
CVE-2015-4714
Cross-site scripting XSS vulnerability in the DreamBox DM500-S allows remote attackers to inject arbitrary web script or HTML via the mode parameter to /body...
Cross site scripting
Cross-site scripting XSS vulnerability in the DreamBox DM500-S allows remote attackers to inject arbitrary web script or HTML via the mode parameter to /body...
CVE-2015-4714
Cross-site scripting XSS vulnerability in the DreamBox DM500-S allows remote attackers to inject arbitrary web script or HTML via the mode parameter to /body...
CVE-2015-4714
DreamBox DM500-S is vulnerable to a cross-site scripting (XSS) flaw (CVE-2015-4714) in its web interface. The vulnerability arises from unsanitized input in the mode parameter of the /body endpoint, enabling remote attackers to inject arbitrary script/HTML. OpenVAS NASL notes the vulnerability as...