3 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in I-O DATA DEVICE RockDisk with firmware before 1.05e1-2.0.5 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. NOTE: This vulnerability exists because of an incomplete fix for CVE-2013-4713...
CVE-2014-3887
Cross-site scripting XSS vulnerability in I-O DATA DEVICE RockDisk with firmware before 1.05e1-2.0.5 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. NOTE: This vulnerability exists because of an incomplete fix for CVE-2013-4713...
CVE-2013-4713
CVE-2013-4713 affects I-O DATA DEVICE RockDisk, where firmware prior to 1.05e1-2.0.5 is vulnerable to Cross-site scripting (XSS) by remote authenticated users via unspecified vectors. The exact exploitation details aren’t provided in the documents, but multiple sources report an incomplete fix le...