6 matches found
EUVD-2014-1675
Malware in sbrugna...
SFR Box NB6多个跨站脚本漏洞
CVE ID:CVE-2014-1599 SFR Box NB6是一款路由器设备。 通过/network/dns, /network/dhcp, /network/nat, /network/route, /network/lan和/wifi/config传递的输入在返回用户之前缺少过滤,允许远程攻击者利用漏洞注入恶意脚本或HTML代码,当恶意数据被查看时,可获取敏感信息或劫持用户会话。 0 SFR Box NB6 目前没有详细解决方案:...
CVE-2014-1599
Multiple cross-site scripting XSS vulnerabilities in the SFR Box router with firmware NB6-MAIN-R3.3.4 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to 1 dns, 2 dhcp, 3 nat, 4 route, or 5 lan in network/; or 6 wifi/config...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the SFR Box router with firmware NB6-MAIN-R3.3.4 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to 1 dns, 2 dhcp, 3 nat, 4 route, or 5 lan in network/; or 6 wifi/config...
CVE-2014-1599
Multiple cross-site scripting XSS vulnerabilities in the SFR Box router with firmware NB6-MAIN-R3.3.4 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to 1 dns, 2 dhcp, 3 nat, 4 route, or 5 lan in network/; or 6 wifi/config...
CVE-2014-1599
CVE-2014-1599 relates to multiple XSS vulnerabilities in the SFR Box NB6 router, firmware NB6-MAIN-R3.3.4. Public sources describe non-filtered inputs in several UI endpoints: /network/dns, /network/dhcp, /network/nat, /network/route, /network/lan, and /wifi/config, which can reflect arbitrary sc...