Reflected XSS Vulnerability in Totolink EX300_v2 Router
CVE-2021-43661
6.1MEDIUM
What is CVE-2021-43661?
The Totolink EX300_v2 router is susceptible to a reflected cross-site scripting (XSS) flaw located within the /home.asp component. This vulnerability allows an attacker to inject malicious scripts into web pages viewed by users, potentially enabling unauthorized actions and compromising user data. Exploitation of this issue can lead to significant security risks, affecting the integrity and confidentiality of users interacting with the device.