CVE-2018-25035 in TCW710info

Zusammenfassung

von MITRE • 12.06.2022

A vulnerability, which was classified as problematic, was found in Thomson TCW710 ST5D.10.05. Affected is an unknown function of the file /goform/RGFirewallEL. The manipulation of the argument EmailAddress/SmtpServerName with the input >alert(1) as part of POST Request leads to cross site scripting (Persistent). It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

VulDB

Reservieren

04.06.2022

Veröffentlichung

12.06.2022

Moderieren

akzeptiert

Eintrag

VDB-126696

CPE

bereit

CWE

CWE-80 (bestätigt)

Exploit

Download

CVSS

5.4 (NVD)

EPSS

0.00206

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2018-25035
NVD	https://nvd.nist.gov/vuln/detail/CVE-2018-25035
CVE Details	https://www.cvedetails.com/cve/CVE-2018-25035/

◂ Zurück Übersicht Weiter ▸

Do you need the next level of professionalism?

Upgrade your account now!