← back
CVE-2017-15287

CVE-2017-15287

EPSS 5.6%
There is XSS in the BouquetEditor WebPlugin for Dream Multimedia Dreambox devices, as demonstrated by the "Name des Bouquets" field, or the file parameter to the /file URI.
Affected products
n/a · n/a
public PoCs found2
cve_referencewww.exploit-db.com/exploits/42986/unverifiedexploitdbwww.exploit-db.com/exploits/42986unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://fireshellsecurity.team/assets/pdf/Vulnerability-XSS-Dreambox.pdfhttps://www.exploit-db.com/exploits/42986/