CVE-2025-5508 | TOTOLINK A3002RU 2.1.1-B20230720.1011 IP Port Filtering Page Comment cross site scripting

Inserito da Angelo Barbosa | Giu 3, 2025 | CVE

A vulnerability was found in TOTOLINK A3002RU 2.1.1-B20230720.1011. It has been rated as problematic. Affected by this issue is some unknown functionality of the component IP Port Filtering Page. The manipulation of the argument Comment leads to cross site scripting.

This vulnerability is handled as CVE-2025-5508. The attack may be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-5508 | TOTOLINK A3002RU 2.1.1-B20230720.1011 IP Port Filtering Page Comment cross site scripting

Post correlati

CVE-2025-22780 | Alexey Yuzhakov wp-pano Plugin up to 1.17 on WordPress cross site scripting

CVE-2024-27337 | Kofax Power PDF TIFF File Parser stack-based overflow

CVE-2023-42581 | Samsung Galaxy Store prior 4.5.64.4 InstantPlay Deeplink input validation

CVE-2024-9240 | ReDi Restaurant Reservation Plugin up to 24.0902 on WordPress cross site scripting