CVE-2025-9289 | TP-Link Omada Software Controller cross site scripting (EUVD-2025-206326)

Inserito da Angelo Barbosa | Gen 23, 2026 | CVE

A vulnerability has been found in TP-Link Omada Software Controller, Omada OC200, OC220, OC300, OC400 and Omada cloud controller and classified as problematic. This impacts an unknown function. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-9289. The attack is possible to be carried out remotely. No exploit exists.

The affected component should be upgraded.

CVE-2025-9289 | TP-Link Omada Software Controller cross site scripting (EUVD-2025-206326)

Post correlati

CVE-2022-40732 | Microsoft Windows 11/Server 2022 win32kbase.sys DirectComposition null pointer dereference (TALOS-2022-1514)

CVE-2024-38759 | WP MEDIA SAS Search & Replace Plugin up to 3.2.2 on WordPress deserialization

CVE-2024-23512 | ProductX Plugin up to 3.1.4 on WordPress wopb_wishlist/wopb_compare code injection

CVE-2024-9090 | SourceCodester Modern Loan Management System 1.0 search_member.php searchMember sql injection