6 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.0%
TOTOLINK EX200 V4.0.3c.7646_B20201211 contains a Cross-site scripting (XSS) vulnerability through the key parameter in the setWiFiExtenderConfig function.
github.com/4hsien/CVE-vulns/blob/main/TOTOLINK/EX200/XSS_key/README.md
www.totolink.net/home/menu/newstpl/menu_newstpl/products/id/144.html