Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-4731

Malware in sbrugna...

4.3CVSS6.4AI score0.01025EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2015/06/25 12:0 a.m.17 views

DreamBox DM500-S XSS Vulnerability (Jun 2015)

DreamBox DM500-S devices are prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.3AI score0.01025EPSS
Exploits1References3
CNVD
CNVD
added 2015/06/23 12:0 a.m.3 views

Dream Multimedia DreamBox DM500-S Cross-Site Scripting Vulnerability

Dream Multimedia DreamBox DM500-S is a Linux-based digital TV set-top box receiver from Dream Multimedia, Germany. A cross-site scripting vulnerability exists in the Dream Multimedia DreamBox DM500-S. The vulnerability can be exploited by a remote attacker to inject arbitrary web script or HTML v...

4.3CVSS6AI score0.01025EPSS
Exploits1References1
NVD
NVD
added 2015/06/22 6:59 p.m.14 views

CVE-2015-4714

Cross-site scripting XSS vulnerability in the DreamBox DM500-S allows remote attackers to inject arbitrary web script or HTML via the mode parameter to /body...

4.3CVSS5.7AI score0.01025EPSS
Exploits1References2
Prion
Prion
added 2015/06/22 6:59 p.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in the DreamBox DM500-S allows remote attackers to inject arbitrary web script or HTML via the mode parameter to /body...

4.3CVSS6.1AI score0.01025EPSS
Exploits1References2
Cvelist
Cvelist
added 2015/06/22 6:0 p.m.17 views

CVE-2015-4714

Cross-site scripting XSS vulnerability in the DreamBox DM500-S allows remote attackers to inject arbitrary web script or HTML via the mode parameter to /body...

5.7AI score0.01025EPSS
Exploits1References2
CVE
CVE
added 2015/06/22 6:0 p.m.45 views

CVE-2015-4714

DreamBox DM500-S is vulnerable to a cross-site scripting (XSS) flaw (CVE-2015-4714) in its web interface. The vulnerability arises from unsanitized input in the mode parameter of the /body endpoint, enabling remote attackers to inject arbitrary script/HTML. OpenVAS NASL notes the vulnerability as...

4.3CVSS5.9AI score0.01025EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder