Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 06/01/2021 Updated: 08/01/2021

CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8

CVSS v3 Base Score: 4.8 | Impact Score: 2.7 | Exploitability Score: 1.7

VMScore: 312

Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N

Cross Site Scripting (XSS) vulnerability in Beetel router 777VR1 can be exploited via the NTP server name in System Time and "Keyword" in URL Filter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
beetel 777vr1_firmware -

Stored XSS via CSRF in Beetel 777VR1 Router

CVE-2020-25498: Stored XSS via CSRF in Beetel 777VR1 Router Vulnerability Description It has been identified that the vulnerable endpoint doesn't have server side input validation and lacks client side filtering for any malicious script injection An attacker can use this vulnerability to inject malicious script in the endpoint and the script is activated every time a user

CWE-79 http://beetel.com https://github.com/the-girl-who-lived/CVE-2020-25498 https://youtu.be/u_6yBIMF74A https://youtu.be/qeVHvmS5wtI https://nvd.nist.gov https://github.com/the-girl-who-lived/CVE-2020-25498

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-25498

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect