Lucene search
K

456 matches found

RedhatCVE
RedhatCVE
added 2025/06/05 6:5 p.m.10 views

CVE-2025-5515

A vulnerability, which was classified as critical, has been found in TOTOLINK X2000R 1.0.0-B20230726.1108. Affected by this issue is some unknown functionality of the file /boafrm/formMapDel. The manipulation of the argument devicemac1 leads to command injection. The attack may be launched...

6.5CVSS7.3AI score0.04531EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/06/05 3:26 p.m.18 views

CVE-2025-5504

A vulnerability has been found in TOTOLINK X2000R 1.0.0-B20230726.1108 and classified as critical. This vulnerability affects unknown code of the file /boafrm/formWsc. The manipulation of the argument peerRptPin leads to command injection. The attack can be initiated remotely. The exploit has bee...

6.5CVSS7.5AI score0.15041EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2025/06/05 12:0 a.m.7 views

The vulnerability of the Parent Controls component in the microprogramming software for Totolink X2000R allows a violator to perform cross-site scripting attacks.

The vulnerability of the Parent Controls component in the Totolink X2000R microprogramming software lies in the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting attacks...

4CVSS5.1AI score0.00279EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/05 12:0 a.m.8 views

The vulnerability of the NAT Mapping configuration of the Virtual Server module in the microprogramming router Totolink X2000R allows attackers to carry out cross-site scripting attacks.

The vulnerability of the NAT Mapping configuration of the Totolink X2000R router software module is related to the lack of protection for the website structure when processing the servicetype parameter. Exploiting this vulnerability allows an attacker to perform cross-site scripting attacks...

4CVSS5AI score0.00277EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/05 12:0 a.m.7 views

The vulnerability of the built-in boa server (/boafrm/formMapDel) of the Totolink X2000R router’s microprogramming software allows a hacker to execute arbitrary commands.

The vulnerability of the built-in server boa /boafrm/formMapDel of the Totolink X2000R router’s microprogramming software is related to the lack of data cleaning at the management level when processing the parameter devicemac1. Exploiting this vulnerability allows an attacker operating remotely t...

6.5CVSS6.9AI score0.04531EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/05 12:0 a.m.8 views

The vulnerability of the URL filtering configuration of the Firewall module in the Totolink X2000R software-defined router solution allows attackers to carry out cross-site scripting attacks.

The vulnerability of the URL filtering configuration of the Totolink X2000R router software module is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks remotely...

4CVSS5AI score0.00299EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2025/06/03 11:15 p.m.9 views

CVE-2025-5543

A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Parent Controls Page. The manipulation of the argument Device Name leads to cross site scripting. The attack can be...

4.8CVSS3.5AI score0.00279EPSS
Exploits1References5
NVD
NVD
added 2025/06/03 11:15 p.m.13 views

CVE-2025-5543

A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Parent Controls Page. The manipulation of the argument Device Name leads to cross site scripting. The attack can be...

4.8CVSS0.00279EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/06/03 10:31 p.m.28 views

CVE-2025-5543 TOTOLINK X2000R Parent Controls Page cross site scripting

A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Parent Controls Page. The manipulation of the argument Device Name leads to cross site scripting. The attack can be...

4.8CVSS0.00279EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/06/03 10:31 p.m.7 views

CVE-2025-5543 TOTOLINK X2000R Parent Controls Page cross site scripting

A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Parent Controls Page. The manipulation of the argument Device Name leads to cross site scripting. The attack can be...

4.8CVSS3.5AI score0.00279EPSS
Exploits1References5
CVE
CVE
added 2025/06/03 10:31 p.m.55 views

CVE-2025-5543

CVE-2025-5543 – TOTOLINK X2000R : The vulnerability affects the Parent Controls Page in TOTOLINK X2000R v1.0.0-B20230726.1108, caused by improper handling of the Device Name argument leading to cross-site scripting. It can be exploited remotely and the exploit has been disclosed. No official patc...

4.8CVSS6.4AI score0.00279EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2025/06/03 10:15 p.m.10 views

CVE-2025-5542

A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been classified as problematic. Affected is an unknown function of the file /boafrm/formPortFw of the component Virtual Server Page. The manipulation of the argument servicetype leads to cross site scripting. It is possible...

4.8CVSS3.6AI score0.00277EPSS
Exploits1References5
NVD
NVD
added 2025/06/03 10:15 p.m.30 views

CVE-2025-5542

A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been classified as problematic. Affected is an unknown function of the file /boafrm/formPortFw of the component Virtual Server Page. The manipulation of the argument servicetype leads to cross site scripting. It is possible...

4.8CVSS0.00277EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/06/03 10:0 p.m.8 views

CVE-2025-5542 TOTOLINK X2000R Virtual Server Page formPortFw cross site scripting

A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been classified as problematic. Affected is an unknown function of the file /boafrm/formPortFw of the component Virtual Server Page. The manipulation of the argument servicetype leads to cross site scripting. It is possible...

4.8CVSS3.5AI score0.00277EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/06/03 10:0 p.m.43 views

CVE-2025-5542 TOTOLINK X2000R Virtual Server Page formPortFw cross site scripting

A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been classified as problematic. Affected is an unknown function of the file /boafrm/formPortFw of the component Virtual Server Page. The manipulation of the argument servicetype leads to cross site scripting. It is possible...

4.8CVSS0.00277EPSS
Exploits1References5
CVE
CVE
added 2025/06/03 10:0 p.m.56 views

CVE-2025-5542

TOTOLINK X2000R 1.0.0-B20230726.1108 is affected by a cross-site scripting vulnerability in the Virtual Server Page (file /boafrm/formPortFw). The root cause is manipulation of the service_type parameter, which can be exploited remotely to trigger XSS. Exploit has been disclosed publicly. No patc...

4.8CVSS6.4AI score0.00277EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2025/06/03 6:15 p.m.14 views

CVE-2025-5516

A vulnerability, which was classified as problematic, was found in TOTOLINK X2000R 1.0.0-B20230726.1108. This affects an unknown part of the file /boafrm/formFilter of the component URL Filtering Page. The manipulation of the argument URL Address leads to cross site scripting. It is possible to...

4.8CVSS0.00299EPSS
Exploits1References5
OSV
OSV
added 2025/06/03 6:15 p.m.8 views

CVE-2025-5516

A vulnerability, which was classified as problematic, was found in TOTOLINK X2000R 1.0.0-B20230726.1108. This affects an unknown part of the file /boafrm/formFilter of the component URL Filtering Page. The manipulation of the argument URL Address leads to cross site scripting. It is possible to...

4.8CVSS3.7AI score0.00299EPSS
Exploits1References5
OSV
OSV
added 2025/06/03 6:15 p.m.8 views

CVE-2025-5515

A vulnerability, which was classified as critical, has been found in TOTOLINK X2000R 1.0.0-B20230726.1108. Affected by this issue is some unknown functionality of the file /boafrm/formMapDel. The manipulation of the argument devicemac1 leads to command injection. The attack may be launched...

5.3CVSS5.6AI score0.04531EPSS
Exploits1References5
NVD
NVD
added 2025/06/03 6:15 p.m.12 views

CVE-2025-5515

A vulnerability, which was classified as critical, has been found in TOTOLINK X2000R 1.0.0-B20230726.1108. Affected by this issue is some unknown functionality of the file /boafrm/formMapDel. The manipulation of the argument devicemac1 leads to command injection. The attack may be launched...

6.5CVSS0.04531EPSS
Exploits1References5
Rows per page
Query Builder