2 matches found
CVE-2017-8332
An issue was discovered on Securifi Almond, Almond+, and Almond 2015 devices with firmware AL-R096. The device provides a user with the capability of blocking key words passing in the web traffic to prevent kids from watching content that might be deemed unsafe using the web management interface...
CVE-2017-8332
CVE-2017-8332 affects Securifi Almond/Almond+ devices (firmware AL-R096). A stored XSS flaw in the web management interface arises from lacking proper cross-site scripting protection, allowing a remote attacker to lure a logged-in admin to trigger a payload that can take control of the device, pe...