CVE-2025-5506 – TOTOLINK A3002RU Cross-Site Scripting in NAT Mapping Page

June 3, 2025

CVE ID : CVE-2025-5506

Published : June 3, 2025, 3:16 p.m. | 17 minutes ago

Description : A vulnerability was found in TOTOLINK A3002RU 2.1.1-B20230720.1011. It has been classified as problematic. Affected is an unknown function of the component NAT Mapping Page. The manipulation of the argument Comment leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 2.4 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4205 – WordPress Popup Maker Stored Cross-Site Scripting Vulnerability

Next Article CVE-2025-5504 – TOTOLINK X2000R Command Injection Vulnerability

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

Handling JavaScript Event Listeners With Parameters

ChatGPT now has an agent mode

Scrum Alliance and Kanban University partner to offer new course that teaches both methodologies

Is ChatGPT down? You’re not alone. Here’s what OpenAI is saying

I found a tablet that could replace my iPad and Kindle – and it’s worth every penny

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

Execute Ping Commands and Get Back Structured Data in PHP

Execute Ping Commands and Get Back Structured Data in PHP

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

I Made Kitty Terminal Even More Awesome by Using These 15 Customization Tips and Tweaks

I Made Kitty Terminal Even More Awesome by Using These 15 Customization Tips and Tweaks

Microsoft confirms active cyberattacks on SharePoint servers

How to Manually Check & Install Windows 11 Updates (Best Guide)

CVE-2025-5506 – TOTOLINK A3002RU Cross-Site Scripting in NAT Mapping Page

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

3,500 Websites Hijacked to Secretly Mine Crypto Using Stealth JavaScript and WebSocket Tactics

“Is my work killing kids?” This could be the email that led Microsoft to ban keywords like ‘Palestine’ and ‘Gaza’ from internal comms

Xbox’s Age of Empires 2: Definitive Edition is getting The Three Kingdoms DLC, bringing new units, campaigns, and more

CVE-2024-5647 – WordPress Magnific Popups Stored Cross-Site Scripting Vulnerability

Tech Behind the Trucks: AI, GPS & Automation in Online Truck Booking Explained

One Time Purchase Text To Speech Tool

CVE-2025-3889 – WordPress Simple Shopping Cart Insecure Direct Object Reference

CVE-2025-45864 – TOTOLINK A3002R Buffer Overflow Vulnerability

Modernize and migrate on-premises fraud detection machine learning workflows to Amazon SageMaker

CVE-2025-5506 – TOTOLINK A3002RU Cross-Site Scripting in NAT Mapping Page

Related Posts