4 matches found
Dreambox Plugin BouquetEditor - Cross-Site Scripting Vulnerability
Exploit for hardware platform in category web applications Exploit Title: Vulnerability XSS - Dreambox Shodan Dork: Dreambox 200 Date: 12/10/2017 Exploit Author: Thiago "THX" Sena Vendor Homepage: https://www.dreamboxupdate.com Version: 2.0.0 Tested on: kali linux, windows 7, 8.1, 10 CVE :...
DreamBox BouquetEditor 2.0.0 Cross Site Scripting
Exploit Title: Vulnerability XSS - Dreambox Shodan Dork: Dreambox 200 Date: 12/10/2017 Exploit Author: Thiago "THX" Sena Vendor Homepage: https://www.dreamboxupdate.com Version: 2.0.0 Tested on: kali linux, windows 7, 8.1, 10 CVE : CVE-2017-15287 Vulnerabilty: Cross-site scripting XSS in plugin...
CVE-2017-15287
Dream Multimedia Dreambox devices with the BouquetEditor WebPlugin (Dreambox WebControl 2.0.0) are vulnerable to reflected XSS, as shown in the Bouquet name field or the /file URI parameter. The issue is triggered via user-supplied input processed by the WebControl component, allowing arbitrary J...
Dreambox Plugin BouquetEditor - Cross-Site Scripting
Dreambox Plugin BouquetEditor - Cross-Site Scripting Exploit Title: Vulnerability XSS - Dreambox Shodan Dork: Dreambox 200 Date: 12/10/2017 Exploit Author: Thiago "THX" Sena Vendor Homepage: https://www.dreamboxupdate.com Version: 2.0.0 Tested on: kali linux, windows 7, 8.1, 10 CVE : CVE-2017-152...