5 matches found
CVE-2025-4852
A vulnerability, which was classified as problematic, has been found in TOTOLINK A3002R 2.1.1-B20230720.1011. This issue affects some unknown processing of the component VPN Page. The manipulation of the argument Comment leads to cross site scripting. The attack may be initiated remotely. The...
CVE-2025-4852
A vulnerability, which was classified as problematic, has been found in TOTOLINK A3002R 2.1.1-B20230720.1011. This issue affects some unknown processing of the component VPN Page. The manipulation of the argument Comment leads to cross site scripting. The attack may be initiated remotely. The...
CVE-2025-4852 TOTOLINK A3002R VPN Page cross site scripting
A vulnerability, which was classified as problematic, has been found in TOTOLINK A3002R 2.1.1-B20230720.1011. This issue affects some unknown processing of the component VPN Page. The manipulation of the argument Comment leads to cross site scripting. The attack may be initiated remotely. The...
CVE-2025-4852 TOTOLINK A3002R VPN Page cross site scripting
A vulnerability, which was classified as problematic, has been found in TOTOLINK A3002R 2.1.1-B20230720.1011. This issue affects some unknown processing of the component VPN Page. The manipulation of the argument Comment leads to cross site scripting. The attack may be initiated remotely. The...
CVE-2025-4852
CVE-2025-4852 affects TOTOLINK A3002R (firmware 2.1.1-B20230720.1011) in the VPN Page component. The vulnerability is a cross-site scripting (XSS) flaw caused by improper handling of the Comment parameter. It can be triggered remotely and, per sources in PT-2025-21827 and other references, has le...