CVE-2025-41749

An XSS vulnerability in portutil.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-level...

CVE-2025-41749

An XSS vulnerability in portutil.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-level...

CVE-2025-41749

An XSS vulnerability in portutil.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-level...

CVE-2025-41749

CVE-2025-41749 describes a reflected XSS in port_util.php. Multiple sources (NVD, Red Hat, EUVD, CVE List, VulnEnrichment, CIRCL) reiterate: an unauthenticated remote attacker can lure an authenticated user to click a crafted link to modify device configuration parameters via the web-based manage...

CVE-2025-41749 Reflected XSS vulnerability in port_util.php

An XSS vulnerability in portutil.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-level...