CVE-2025-51569 | LB-LINK BL-CPE300M 01.01.02P42U14_06 Web Interface goform_get_cmd_process cmd cross site scripting

Inserito da Angelo Barbosa | Lug 31, 2025 | CVE

A vulnerability was found in LB-LINK BL-CPE300M 01.01.02P42U14_06 and classified as problematic. Affected by this issue is some unknown functionality of the file /goform/goform_get_cmd_process of the component Web Interface. The manipulation of the argument cmd leads to cross site scripting.

This vulnerability is handled as CVE-2025-51569. The attack may be launched remotely. There is no exploit available.

CVE-2025-51569 | LB-LINK BL-CPE300M 01.01.02P42U14_06 Web Interface goform_get_cmd_process cmd cross site scripting

Post correlati

CVE-2024-8399 | Mozilla Focus up to 129 on iOS URL clickjacking

CVE-2024-29119 | Siemens Spectrum Power 7 V23Q3/V23Q4 privileges assignment (ssa-616032)

CVE-2024-27558 | Stupid Simple CMS 1.2.4 Setting Blog Title cross site scripting

CVE-2024-45564 | Qualcomm Snapdragon Auto C-V2X 9150 up to WSA8830 Server Info Object use after free