Thiago Sena

4 exploits Active since Oct 2017
EIP-2026-105974 EXPLOITDB text WORKING POC
CMS ISWEB 3.5.3 - Directory Traversal
CVE-2017-15687 EXPLOITDB MEDIUM text WORKING POC
Logitech Media Server - XSS
DOM Based Cross Site Scripting (XSS) exists in Logitech Media Server 7.7.1, 7.7.2, 7.7.3, 7.7.5, 7.7.6, 7.9.0, and 7.9.1 via a crafted URI.
CVSS 6.1
CVE-2017-15287 EXPLOITDB MEDIUM text WORKING POC
Dreambox WebControl 2.0.0 - Cross-Site Scripting
There is XSS in the BouquetEditor WebPlugin for Dream Multimedia Dreambox devices, as demonstrated by the "Name des Bouquets" field, or the file parameter to the /file URI.
CVSS 6.1
CVE-2017-15291 EXPLOITDB MEDIUM text WRITEUP
Tp-link Tl-mr3220 Firmware - XSS
Cross-site scripting (XSS) vulnerability in the Wireless MAC Filtering page in TP-LINK TL-MR3220 wireless routers allows remote attackers to inject arbitrary web script or HTML via the Description field.
CVSS 6.1