TOTOLINK A3002RU Cross-Site Scripting Vulnerability (CNVD-2018-24107)
TOTOLINK A3002RU is a wireless router product from Gion Electronics TOTOLINK. A cross-site scripting vulnerability exists in the noticegen.htm page of the TOTOLINK A3002RU version 1.0.8. A remote attacker can exploit this vulnerability by modifying the "User phrases button" field to execute...