3 matches found
CVE-2021-34228
Cross-site scripting in parentcontrol.htm in TOTOLINK A3002R version V1.1.1-B20200824 Important Update, new UI allows attackers to execute arbitrary JavaScript by modifying the "Description" field and "Service Name" field...
CVE-2021-34228
creationtimestamp| type| source ---|---|--- 2021-08-20 20:19:19+00:00| seen| https://t.me/cibsecurity/27643...
CVE-2021-34228
CVE-2021-34228 describes a cross-site scripting vulnerability in TOTOLINK A3002R (v1.1.1-B20200824, Important Update, new UI). The issue arises in the web interface page parent_control.htm, where an attacker can trigger arbitrary JavaScript by modifying the Description and Service Name fields, en...