Home

Description

A stored cross-site scripting (XSS) vulnerability in the page_save component of Linksys E5600 V1.1.0.26 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the hostname and domainName parameters.

PUBLISHED Reserved 2025-03-11 | Published 2025-12-16 | Updated 2025-12-16 | Assigner mitre

References

github.com/...main/linsys/E5600/XSS_wan_name/XSS_wan_name.md

github.com/Suryaandave/CVES/tree/main/CVE-2025-29231

cve.org (CVE-2025-29231)

nvd.nist.gov (CVE-2025-29231)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.