Description
Cross-site scripting (XSS) vulnerability in Technicolor Router TD5130 with firmware 2.05.C29GV allows remote attackers to inject arbitrary web script or HTML via the failrefer parameter.
Exploits (1)
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/534143/100/0/threaded
Exploit x_refsource_misc
http://packetstormsecurity.com/files/129374/ADSL2-2.05.C29GV-XSS-URL-Redirect-Command-Injection.html
Exploit exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/35462
Scores
EPSS
0.0332
EPSS Percentile
87.3%
Details
CWE
CWE-79
Status
published
Products (1)
technicolor/td5130_router_firmware
2.05.c29gv
Published
Dec 05, 2014
Tracked Since
Feb 18, 2026