VYPR
Low severity2.4NVD Advisory· Published Jun 3, 2025· Updated Jun 17, 2026

CVE-2025-5542

CVE-2025-5542

Description

A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been classified as problematic. Affected is an unknown function of the file /boafrm/formPortFw of the component Virtual Server Page. The manipulation of the argument service_type leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Affected products

2
  • Totolink/X2000R-Ghllm-fuzzy2 versions
    1.0.0-B20230726.1108+ 1 more
    • (no CPE)range: 1.0.0-B20230726.1108
    • (no CPE)range: 1.0.0-B20230726.1108

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.