ID CVE-2017-15287
Summary There is XSS in the BouquetEditor WebPlugin for Dream Multimedia Dreambox devices, as demonstrated by the "Name des Bouquets" field, or the file parameter to the /file URI.
References
Vulnerable Configurations
CVSS
Base: None
Impact:
Exploitability:
exploit-db via4
author Thiago Sena
date 2017-10-12
description Dreambox Plugin BouquetEditor - Cross-Site Scripting
file platforms/hardware/webapps/42986.txt
id 42986
platform hardware
port 0
type webapps
refmap via4
misc https://fireshellsecurity.team/assets/pdf/Vulnerability-XSS-Dreambox.pdf
Last major update 12-10-2017 - 11:29
Published 12-10-2017 - 11:29
Last modified 14-10-2017 - 21:29
Back to Top