CVE-2024-32325 Information

Description

TOTOLINK EX200 V4.0.3c.7646_B20201211 contains a Cross-site scripting (XSS) vulnerability through the ssid parameter in the setWiFiExtenderConfig function.

Reference

https://www.totolink.net/home/menu/newstpl/menu_newstpl/products/id/144.html https://github.com/4hsien/CVE-vulns/blob/main/TOTOLINK/EX200/XSS_ssid/README.md