2 matches found
CVE-2015-4587
Cross-site scripting XSS vulnerability in the Alcatel-Lucent CellPipe 7130 router with firmware 1.0.0.20h.HOL allows remote attackers to inject arbitrary web script or HTML via the "Custom application" field in the "port triggering" menu...
CVE-2015-4587
CVE-2015-4587 – A stored XSS in the Alcatel-Lucent CellPipe 7130 Router Web UI is triggered via the On-the-fly input in the "Custom application" field within the "port triggering" menu. Affected firmware: 1.0.0.20h.HOL. The root cause is unsanitized user input interpreted as HTML/JavaScript in th...