CVE-2025-5542 | TOTOLINK X2000R 1.0.0-B20230726.1108 Virtual Server Page /boafrm/formPortFw service_type cross site scripting

Inserito da Angelo Barbosa | Giu 3, 2025 | CVE

A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been classified as problematic. Affected is an unknown function of the file /boafrm/formPortFw of the component Virtual Server Page. The manipulation of the argument service_type leads to cross site scripting.

This vulnerability is traded as CVE-2025-5542. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2025-5542 | TOTOLINK X2000R 1.0.0-B20230726.1108 Virtual Server Page /boafrm/formPortFw service_type cross site scripting

Post correlati

CVE-2024-41862 | Adobe Substance3D Sampler up to 4.5 out-of-bounds (apsb24-65)

CVE-2024-41236 | Kashipara Responsive School Management System 3.2.0 Admin Login Page /smsa/admin_login.php username sql injection

CVE-2024-25452 | Axiomatic Bento4 1.6.0-640 AP4_UrlAtom::AP4_UrlAtom resource consumption

CVE-2023-50251 | dompdf php-svg-lib up to 0.5.0 SVG File recursion