CVE-2025-5508 | TOTOLINK A3002RU 2.1.1-B20230720.1011 IP Port Filtering Page Comment cross site scripting

Inserito da Angelo Barbosa | Giu 3, 2025 | CVE

A vulnerability was found in TOTOLINK A3002RU 2.1.1-B20230720.1011. It has been rated as problematic. Affected by this issue is some unknown functionality of the component IP Port Filtering Page. The manipulation of the argument Comment leads to cross site scripting.

This vulnerability is handled as CVE-2025-5508. The attack may be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-5508 | TOTOLINK A3002RU 2.1.1-B20230720.1011 IP Port Filtering Page Comment cross site scripting

Post correlati

CVE-2023-6654 | PHPEMS 6.x/7.0 Session Data lib/session.cls.php deserialization

CVE-2024-51163 | Vegam Solutions Vegam 4i up to 6.3.47.0 Print Labelling information disclosure

CVE-2024-0912 | Johnson Controls C-CURE 9000 up to 3.00.2 CU01 log file (icsa-24-135-03)

CVE-2024-24524 | flusity CMS 2.33 add_menu.php cross-site request forgery