CVE-2015-2883
Philips In.Sight B120/37 is affected by a cross-site scripting (XSS) vulnerability, related to the Weaved cloud web service. The issue can be triggered via the name parameter in deviceSettings.php or shareDevice.php. The Common result is that arbitrary script/HTML could be injected, potentially a...