Cross site scripting

There is XSS in the BouquetEditor WebPlugin for Dream Multimedia Dreambox devices, as demonstrated by the "Name des Bouquets" field, or the file parameter to the /file URI...

CVE-2017-15287

Dream Multimedia Dreambox devices with the BouquetEditor WebPlugin (Dreambox WebControl 2.0.0) are vulnerable to reflected XSS, as shown in the Bouquet name field or the /file URI parameter. The issue is triggered via user-supplied input processed by the WebControl component, allowing arbitrary J...

DreamBox DM500s Cross Site Scripting

DreamBox DM500s Reflected XSS Vendor: Dream Multimedia GmbH Product web page: http://www.dream-multimedia-tv.de Summary: The Dreambox DM500s is a Linux-powered DVB satellite, terrestrial and cable digital television receivers set-top box. Tested on: Linux Kernel 2.6.9, The Gemini Project, Enigma...

DreamBox DM500(+) - Arbitrary File Download Vulnerability

No description provided by source. DreamBox DM500+ Arbitrary File Download Vulnerability Vendor: Dream Multimedia GmbH Product web page: http://www.dream-multimedia-tv.de Affected version: DM500, DM500+, DM500HD and DM500S Summary: The Dreambox is a series of Linux-powered DVB satellite,...

OpenPLI 3.0 beta (OpenPLi-beta-dm7000-20130127-272) - Multiple Vulnerabilities

No description provided by source. Exploit Title: Multiple Vulnerabilities in OpenPLI Date: 13.02.2013 Exploit Author: m-1-k-3 Vendor Homepage: http://openpli.org/ Software Link: http://openpli.org/ Version: v3.0 beta OpenPLi-beta-dm7000-20130127-272 and below Device Name: OpenPLI - Dream...

DreamBox DM800 Arbitrary File Download Vulnerability

No description provided by source. Exploit Title: title Date: date Author: ShellVision Version: dm800 = 1.6rc3 Tested on: dm800 Release 4.6.0 2009-12-24 DreamBox DM800 Arbitrary File Download Vulnerability Vendor: Dream Multimedia GmbH Product web page: http://www.dream-multimedia-tv.de Affected...

OpenPLI 3.0 Beta (OpenPLi-beta-dm7000-20130127-272) - Multiple Vulnerabilities

OpenPLI 3.0 Beta OpenPLi-beta-dm7000-20130127-272 - Multiple Vulnerabilities Exploit Title: Multiple Vulnerabilities in OpenPLI Date: 13.02.2013 Exploit Author: m-1-k-3 Vendor Homepage: http://openpli.org/ Software Link: http://openpli.org/ Version: v3.0 beta OpenPLi-beta-dm7000-20130127-272 and...

OpenPLI v3.0 beta (OpenPLi-beta-dm7000-20130127-272) - Multiple Vulnerabilities

Exploit for hardware platform in category web applications Exploit Title: Multiple Vulnerabilities in OpenPLI Date: 13.02.2013 Exploit Author: m-1-k-3 Vendor Homepage: http://openpli.org/ Software Link: http://openpli.org/ Version: v3.0 beta OpenPLi-beta-dm7000-20130127-272 and below Device Name:...

OpenPLI 3.0 Beta (OpenPLi-beta-dm7000-20130127-272) - Multiple Vulnerabilities

Exploit Title: Multiple Vulnerabilities in OpenPLI Date: 13.02.2013 Exploit Author: m-1-k-3 Vendor Homepage: http://openpli.org/ Software Link: http://openpli.org/ Version: v3.0 beta OpenPLi-beta-dm7000-20130127-272 and below Device Name: OpenPLI - Dream Multimedia Box with OpenPLI software Vendo...

OpenPLI OS Command Execution / Cross Site Scripting

Device Name: OpenPLI - Dream Multimedia Box with OpenPLI software Vendor of device: Dream Multimedia Vendor of Software: OpenPLI Community ============ Device Details: ============ Linux Kernel Linux version 2.6.9 build@plibouwserver gcc version 3.4.4 1 Wed Aug 17 23:54:07 CEST 2011 Firmware...

DreamBox DM800 1.5rc1 - File Disclosure

!/usr/bin/perl DreamBox DM800 :0:0:root:/home/root:/bin/sh daemon::1:1:daemon:/usr/sbin:/bin/sh bin::2:2:bin:/bin:/bin/sh sys::3:3:sys:/dev:/bin/sh sync::4:65534:sync:/bin:/bin/sync games::5:60:games:/usr/games:/bin/sh man::6:12:man:/var/cache/man:/bin/sh lp::7:7:lp:/var/spool/lpd:/bin/sh...

DreamBox DM800 Arbitrary File Download

DreamBox DM800 Arbitrary File Download Vulnerability Vendor: Dream Multimedia GmbH Product web page: http://www.dream-multimedia-tv.de Affected version: DM800 may affect others version Summary: The Dreambox is a series of Linux-powered DVB satellite, terrestrial and cable digital television...

DreamBox DM800 - Arbitrary File Download

DreamBox DM800 - Arbitrary File Download Exploit Title: title Date: date Author: ShellVision Version: dm800 = 1.6rc3 Tested on: dm800 Release 4.6.0 2009-12-24 DreamBox DM800 Arbitrary File Download Vulnerability Vendor: Dream Multimedia GmbH Product web page: http://www.dream-multimedia-tv.de...

DreamBox DM500(+) Arbitrary File Download Vulnerability

Exploit for hardware platform in category remote exploits DreamBox DM500+ Arbitrary File Download Vulnerability Vendor: Dream Multimedia GmbH Product web page: http://www.dream-multimedia-tv.de Affected version: DM500, DM500+, DM500HD and DM500S Summary: The Dreambox is a series of Linux-powered...

DreamBox DM500(+) - Arbitrary File Download

DreamBox DM500+ Arbitrary File Download Vulnerability Vendor: Dream Multimedia GmbH Product web page: http://www.dream-multimedia-tv.de Affected version: DM500, DM500+, DM500HD and DM500S Summary: The Dreambox is a series of Linux-powered DVB satellite, terrestrial and cable digital television...