Cross-Site Scripting Vulnerability in Technicolor Router TD5130
CVE-2014-9142

Currently unrated

Key Information:

Vendor: Technicolor
Status: Td5130 Router Firmware
Vendor: CVE Published:; 5 December 2014

🔔 Create Technicolor Vulnerability Alert

What is CVE-2014-9142?

The Technicolor Router TD5130 with firmware version 2.05.C29GV is susceptible to a Cross-Site Scripting (XSS) vulnerability, which allows remote attackers to inject arbitrary web script or HTML code through the failrefer parameter. This type of vulnerability poses a significant risk as it can lead to unauthorized actions and data theft, potentially compromising users' privacy and network integrity. It is essential for users of affected devices to apply security updates and follow best practices to mitigate the risks associated with this vulnerability.

References

http://www.securityfocus.com/archive/1/534143/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://packetstormsecurity.com/files/129374/ADSL2-2.05.C2...

x_refsource_MISC

http://www.exploit-db.com/exploits/35462

exploitx_refsource_EXPLOIT-DB

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 5, 2014
Vulnerability Reserved
Nov 29, 2014