Home

Description

TOTOLINK X2000R before v1.0.0-B20231213.1013 contains a Store Cross-site scripting (XSS) vulnerability in Root Access Control under the Wireless Page.

PUBLISHED Reserved 2024-03-08 | Published 2024-03-15 | Updated 2025-03-28 | Assigner mitre

References

www.totolink.net/...menu_listtpl/products/id/242/ids/33.html

github.com/...TOLINK/X2000R/XSS_1_Root_Access_Control/XSS.md

cve.org (CVE-2024-28401)

nvd.nist.gov (CVE-2024-28401)

Download JSON