Nu11By73

3 exploits Active since Nov 2017
CVE-2017-16843 EXPLOITDB MEDIUM html WORKING POC
Vonage VDV-23 115 3.2.11-0.9.40 - XSS
Vonage VDV-23 115 3.2.11-0.9.40 devices have stored XSS via the NewKeyword or NewDomain field to /goform/RgParentalBasic.
CVSS 5.4
CVE-2017-16836 EXPLOITDB MEDIUM html WORKING POC
Arris TG1682G - Unauthenticated XSS
Arris TG1682G devices with Comcast TG1682_2.0s7_PRODse 10.0.59.SIP.PC20.CT software allow Unauthenticated Stored XSS via the actionHandler/ajax_managed_services.php service parameter.
CVSS 6.1
CVE-2017-16902 EXPLOITDB HIGH python WORKING POC
Vonage VDV-23 115 <3.2.11-0.9.40 - DoS
On the Vonage VDV-23 115 3.2.11-0.9.40 home router, sending a long string of characters in the loginPassword and/or loginUsername field to goform/login causes the router to reboot.
CVSS 7.5