Lucene search
K

4 matches found

0day.today
0day.today
added 2017/10/13 12:0 a.m.37 views

Dreambox Plugin BouquetEditor - Cross-Site Scripting Vulnerability

Exploit for hardware platform in category web applications Exploit Title: Vulnerability XSS - Dreambox Shodan Dork: Dreambox 200 Date: 12/10/2017 Exploit Author: Thiago "THX" Sena Vendor Homepage: https://www.dreamboxupdate.com Version: 2.0.0 Tested on: kali linux, windows 7, 8.1, 10 CVE :...

4.3CVSS6.4AI score0.06147EPSS
Exploits5
Packet Storm
Packet Storm
added 2017/10/13 12:0 a.m.35 views

DreamBox BouquetEditor 2.0.0 Cross Site Scripting

Exploit Title: Vulnerability XSS - Dreambox Shodan Dork: Dreambox 200 Date: 12/10/2017 Exploit Author: Thiago "THX" Sena Vendor Homepage: https://www.dreamboxupdate.com Version: 2.0.0 Tested on: kali linux, windows 7, 8.1, 10 CVE : CVE-2017-15287 Vulnerabilty: Cross-site scripting XSS in plugin...

6.3AI score0.06147EPSS
Exploits5
CVE
CVE
added 2017/10/12 3:0 p.m.91 views

CVE-2017-15287

Dream Multimedia Dreambox devices with the BouquetEditor WebPlugin (Dreambox WebControl 2.0.0) are vulnerable to reflected XSS, as shown in the Bouquet name field or the /file URI parameter. The issue is triggered via user-supplied input processed by the WebControl component, allowing arbitrary J...

6.1CVSS5.9AI score0.06147EPSS
Exploits5References2Affected Software1
exploitpack
exploitpack
added 2017/10/12 12:0 a.m.59 views

Dreambox Plugin BouquetEditor - Cross-Site Scripting

Dreambox Plugin BouquetEditor - Cross-Site Scripting Exploit Title: Vulnerability XSS - Dreambox Shodan Dork: Dreambox 200 Date: 12/10/2017 Exploit Author: Thiago "THX" Sena Vendor Homepage: https://www.dreamboxupdate.com Version: 2.0.0 Tested on: kali linux, windows 7, 8.1, 10 CVE : CVE-2017-152...

4.3CVSS6.1AI score0.06147EPSS
Exploits5
Rows per page
Query Builder