MidnightBSD

Advisories for elementalpath

CVE-2017-18484 MEDIUM

Cognitoys Dino devices allow XSS via the SSID.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
elementalpath cognitoys_dino_firmware -
CVE-2017-18485 MEDIUM

Cognitoys Dino devices allow profiles_add.html CSRF.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
elementalpath cognitoys_dino_firmware -