5 matches found
CVE-2021-38113
In addBouquet in js/bqe.js in OpenWebif aka e2openplugin-OpenWebif through 1.4.7, inserting JavaScript into the Add Bouquet feature of the Bouquet Editor i.e., bouqueteditor/api/addbouquet?name= leads to Stored XSS...
Cross site scripting
In addBouquet in js/bqe.js in OpenWebif aka e2openplugin-OpenWebif through 1.4.7, inserting JavaScript into the Add Bouquet feature of the Bouquet Editor i.e., bouqueteditor/api/addbouquet?name= leads to Stored XSS...
CVE-2021-38113
OpenWebif (aka e2openplugin-OpenWebif)
CVE-2021-38113
In addBouquet in js/bqe.js in OpenWebif aka e2openplugin-OpenWebif through 1.4.7, inserting JavaScript into the Add Bouquet feature of the Bouquet Editor i.e., bouqueteditor/api/addbouquet?name= leads to Stored XSS...
e2openplugin-OpenWebif 跨站脚本漏洞
OpenWebif is an open source web interface for Enigma2 based set-top boxes. A cross-site scripting vulnerability exists in e2openplugin-OpenWebif versions prior to 1.4.7, which originates from the addBouquet module in js/bqe.js, where insertion of JavaScript into the Bouquet Editor's Add Bouquet...