Vulnerabilities > SFR > SFR BOX Router Firmware
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-03-09 | CVE-2014-1599 | Cross-Site Scripting vulnerability in SFR BOX Router and SFR BOX Router Firmware Multiple cross-site scripting (XSS) vulnerabilities in the SFR Box router with firmware NB6-MAIN-R3.3.4 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to (1) dns, (2) dhcp, (3) nat, (4) route, or (5) lan in network/; or (6) wifi/config. | 4.3 |