Cross site scripting

Cross-site scripting XSS vulnerability in Technicolor Router TD5130 with firmware 2.05.C29GV allows remote attackers to inject arbitrary web script or HTML via the failrefer parameter...

Open redirect

Open redirect vulnerability in Technicolor Router TD5130 with firmware 2.05.C29GV allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the failrefer parameter...

CVE-2014-9142

Technicolor DT5130/TD5130 router with firmware 2.05.C29GV is affected by CVE-2014-9142, a cross-site scripting (XSS) flaw exploitable via the failrefer parameter. The vulnerability allows remote attackers to inject arbitrary web script/HTML in the device’s web interface. CVSS data from NVD indica...

CVE-2014-9143

Open redirect vulnerability in Technicolor Router TD5130 with firmware 2.05.C29GV allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the failrefer parameter...

CVE-2014-9144

Technicolor Router TD5130 with firmware 2.05.C29GV allows remote attackers to execute arbitrary commands via shell metacharacters in the ping field setobjectip parameter...

CVE-2014-9143

CVE-2014-9143 describes an open redirect vulnerability in Technicolor DT5130/TD5130 routers (firmware 2.05.C29GV). The issue arises in the failrefer parameter, allowing remote attackers over the network to redirect users to arbitrary sites and conduct phishing. The provided documents confirm the ...

CVE-2014-9144

Technicolor DT5130 router (Firmware 2.05.C29GV) is affected by CVE-2014-9144 due to insufficient input validation in the ping field (setobject_ip parameter). An attacker can remotely execute arbitrary commands by supplying shell metacharacters, enabling command injection in the device’s web-facin...