Thiago Sena

EIP-2026-105974 EXPLOITDB text WORKING POC

CMS ISWEB 3.5.3 - Directory Traversal

View Code

CVE-2017-15687 EXPLOITDB MEDIUM text WORKING POC

Logitech Media Server 7.7.1-7.7.3 7.7.5-7.7.6 7.9.0-7.9.1 - DOM-Based Cross-Site Scripting via Crafted URI

DOM Based Cross Site Scripting (XSS) exists in Logitech Media Server 7.7.1, 7.7.2, 7.7.3, 7.7.5, 7.7.6, 7.9.0, and 7.9.1 via a crafted URI.

CVSS 6.1

View Code

CVE-2017-15287 EXPLOITDB MEDIUM text WORKING POC

Dreambox WebControl 2.0.0 - Cross-Site Scripting

There is XSS in the BouquetEditor WebPlugin for Dream Multimedia Dreambox devices, as demonstrated by the "Name des Bouquets" field, or the file parameter to the /file URI.

CVSS 6.1

View Code

CVE-2017-15291 EXPLOITDB MEDIUM text WRITEUP

TP-LINK TL-MR3220 Firmware - Stored Cross-Site Scripting via Wireless MAC Filtering Description Field

Cross-site scripting (XSS) vulnerability in the Wireless MAC Filtering page in TP-LINK TL-MR3220 wireless routers allows remote attackers to inject arbitrary web script or HTML via the Description field.

CVSS 6.1

View Code