CVE-2025-5506 | TOTOLINK A3002RU 2.1.1-B20230720.1011 NAT Mapping Page Comment cross site scripting

Inserito da Angelo Barbosa | Giu 3, 2025 | CVE

A vulnerability was found in TOTOLINK A3002RU 2.1.1-B20230720.1011. It has been classified as problematic. Affected is an unknown function of the component NAT Mapping Page. The manipulation of the argument Comment leads to cross site scripting.

This vulnerability is traded as CVE-2025-5506. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-5506 | TOTOLINK A3002RU 2.1.1-B20230720.1011 NAT Mapping Page Comment cross site scripting

Post correlati

CVE-2024-11956 | Pimcore customer-data-framework up to 4.2.0 list filterDefinition/filter sql injection (GHSA-q53r-9hh9-w277)

CVE-2024-13791 | bitpressadmin Chat Widget Plugin up to 1.5.2 on WordPress downloadResponseFile path traversal

CVE-2024-2704 | Tenda AC10U 15.03.06.49 /goform/SetFirewallCfg formSetFirewallCfg firewallEn stack-based overflow

CVE-2024-22029 | Apache Tomcat up to 9.0.84 Local Privilege Escalation