CVE-2021-34220

Published: 2021-08-20T17:15Z

Last Modified: 2024-11-21T06:10Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Cross-site scripting in tr069config.htm in TOTOLINK A3002R version V1.1.1-B20200824 (Important Update, new UI) allows attackers to execute arbitrary JavaScript by modifying the "User Name" field or "Password" field. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt