2 matches found
CVE-2013-3962
Cross-site scripting XSS vulnerability in Grandstream GXV3501, GXV3504, GXV3601, GXV3601HD/LL, GXV3611HD/LL, GXV3615W/P, GXV3651FHD, GXV3662HD, GXV3615WPHD, GXV3500, and possibly other camera models before firmware 1.0.4.44, allows remote attackers to inject arbitrary web script or HTML via the...
CVE-2013-3962
The CVE-2013-3962 issue affects Grandstream GXV-series devices (e.g., GXV3501/3504/3601/3601HD/LL/3611HD/LL/3615W/P/3651FHD/3662HD/3615WP_HD/3500, and possibly others) where an XSS vulnerability exists in the web interface via PATH_INFO. The root cause is untrusted input in the web path allowing ...