CVE-2025-1354 | Asus RT-N12E 2.0.0.19 sysinfo.asp SSID cross site scripting

A vulnerability was found in Asus RT-N12E 2.0.0.19. It has been classified as problematic. Affected is an unknown function of the file sysinfo.asp. The manipulation of the argument SSID leads to cross site scripting.

This vulnerability is traded as CVE-2025-1354. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-1354 | Asus RT-N12E 2.0.0.19 sysinfo.asp SSID cross site scripting

Post correlati

CVE-2024-44307 | Apple macOS up to 14.5 buffer overflow

CVE-2024-51628 | EzyOnlineBookings Online Booking System Widget Plugin up to 1.3 on WordPress cross site scripting

CVE-2024-38643 | QNAP Notes Station up to 3.9.6 missing authentication (qsa-24-36)

CVE-2023-51812 | Tenda AX3 16.03.12.11 Parameter SetNetControlList list Privilege Escalation