Medium severity4.8NVD Advisory· Published Oct 11, 2017· Updated Jun 17, 2026
CVE-2017-15188
CVE-2017-15188
Description
A persistent (stored) XSS vulnerability in the EyesOfNetwork web interface (aka eonweb) 5.1-0 allows remote authenticated administrators to inject arbitrary web script or HTML via the hosts array parameter to module/admin_device/index.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.1-0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.1-0:*:*:*:*:*:*:*
- (no CPE)range: = 5.1-0
- Range: = 5.1-0
Patches
Vulnerability mechanics
References
1- github.com/jsj730sos/cve/blob/master/Eonweb_module_admin_device_index%20stored%20XSSnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.