7 matches found
CVE-2017-15312
Huawei SmartCare V200R003C10 has a stored XSS cross-site scripting vulnerability in the dashboard module. A remote authenticated attacker could exploit this vulnerability to inject malicious scripts in the affected device...
Cross site scripting
Huawei SmartCare V200R003C10 has a stored XSS cross-site scripting vulnerability in the dashboard module. A remote authenticated attacker could exploit this vulnerability to inject malicious scripts in the affected device...
Input validation
Huawei SmartCare V200R003C10 has a CSV injection vulnerability. An remote authenticated attacker could inject malicious CSV expression to the affected device...
CVE-2017-15312
Huawei SmartCare V200R003C10 has a stored XSS cross-site scripting vulnerability in the dashboard module. A remote authenticated attacker could exploit this vulnerability to inject malicious scripts in the affected device...
CVE-2017-15312
Huawei SmartCare V200R003C10 is affected by a stored XSS vulnerability in the dashboard module. A remote authenticated attacker could inject malicious scripts into the affected device via the dashboard, enabling script execution in the user’s browser. The issue is documented across multiple recor...
CVE-2017-15313
Huawei SmartCare V200R003C10 has a CSV injection vulnerability. An remote authenticated attacker could inject malicious CSV expression to the affected device...
CVE-2017-15313
CVE-2017-15313 affects Huawei SmartCare V200R003C10, which has a CSV injection vulnerability. A remote authenticated attacker could inject malicious CSV expressions into the affected device. The connected documents confirm the vulnerability and its impact but do not provide exploit status beyond ...