CVE-2024-28401
TOTOLINK X2000R firmware before v1.0.0-B20231213.1013 contains a Store Cross-site Scripting (XSS) vulnerability in Root Access Control under the Wireless Page. The issue arises from inadequate input validation/escaping of user-supplied data, enabling an attacker to inject arbitrary web script or ...