CVE-2025-3995 | TOTOLINK N150RT 3.4.0-B20190525 LAN Settings Page /boafrm/fromStaticDHCP Hostname cross site scripting

A vulnerability was found in TOTOLINK N150RT 3.4.0-B20190525. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /boafrm/fromStaticDHCP of the component LAN Settings Page. The manipulation of the argument Hostname leads to cross site scripting.

This vulnerability is known as CVE-2025-3995. The attack can be launched remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More