MidnightBSD

Advisories for bouqueteditor_project

CVE-2017-15287 MEDIUM

There is XSS in the BouquetEditor WebPlugin for Dream Multimedia Dreambox devices, as demonstrated by the "Name des Bouquets" field, or the file parameter to the /file URI.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
bouqueteditor_project bouqueteditor 2.0.0