6 matches found
Cross site scripting
An issue was discovered on Humax Digital HG100R 2.0.6 devices. There is XSS on the 404 page...
CVE-2017-7316
An issue was discovered on Humax Digital HG100R 2.0.6 devices. There is XSS on the 404 page...
CVE-2017-7315
An issue was discovered on Humax Digital HG100R 2.0.6 devices. To download the backup file it's not necessary to use credentials, and the router credentials are stored in plaintext inside the backup, aka GatewaySettings.bin...
CVE-2017-7316
An issue was discovered on Humax Digital HG100R 2.0.6 devices. There is XSS on the 404 page...
CVE-2017-7315
CVE-2017-7315 concerns Humax Digital HG100R devices (version 2.0.6). The vulnerability enables download of the backup file without authentication, and GatewaySettings.bin includes the router credentials in plaintext. This exposes sensitive credentials and configuration to an attacker who can obta...
Humax Digital HG100R Cross-Site Scripting Vulnerability
The Humax Digital HG100R is a router from the Korean company Humax Digital. A cross-site scripting vulnerability exists in the 404 page in version 2.0.6 of the Humax Digital HG100R. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...