NetComm NB16WV-02 HTML Injection Vulnerability

The NetComm NB16WV-02 is a router product from NetComm Australia. The NetComm NB16WV-02 suffers from an HTML injection vulnerability that originates when a program fails to properly validate user-supplied input. When an unknowing user browses the affected site, an attacker could exploit the...

CVE-2017-5900

Cross-site scripting XSS vulnerability in the NetComm NB16WV-02 router with firmware NB16WVR0.09 allows remote authenticated users to inject arbitrary web script or HTML via the S801F0334 parameter to hdd.htm...

Cross site scripting

Cross-site scripting XSS vulnerability in the NetComm NB16WV-02 router with firmware NB16WVR0.09 allows remote authenticated users to inject arbitrary web script or HTML via the S801F0334 parameter to hdd.htm...

CVE-2017-5900

Concrete details across connected documents show a stored XSS vulnerability in NetComm NB16WV-02 router (firmware NB16WV_R0.09) via the S801F0334 parameter to hdd.htm. Exploitation path: authenticated users can inject arbitrary script that may execute in others’ browsers. The issue is described a...

NetComm NB16WV-02 Cross Site Scripting

Hi, Mitre has provided the following with the CVE number: CVE-2017-5900 there is a Stored XSS vulnerability in a NetComm router's model NB16WV-02 running version NB16WVR0.09, If authorized user is able to inject the following string POC: Authenticated user is required:...