3 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in the Linksys SPA941 VoIP Phone with firmware 5.1.8 allows remote attackers to inject arbitrary web script or HTML via the From header in a SIP message...
Linksys SPA941 - SIP From HTML Injection
Linksys SPA941 - SIP From HTML Injection source: https://www.securityfocus.com/bid/25987/info Linksys SPA941 devices are prone to an HTML-injection vulnerability because the built-in webserver fails to properly sanitize user-supplied input before using it in dynamically generated content...
Linksys SPA941 - 'SIP From' HTML Injection
source: https://www.securityfocus.com/bid/25987/info Linksys SPA941 devices are prone to an HTML-injection vulnerability because the built-in webserver fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would...