TP-link
Cross-site scripting (XSS) vulnerability on TP-Link WR841N
A stored cross-site scripting (XSS) vulnerability (CVE-2025-25427) has been identified in the “upnp.htm” page of TP-Link WR841N routers' web interface. This flaw allows remote attackers to inject JavaScript via the port mapping description.
Defend Against Threats with Cyber Fusion
Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.
Learn More
Trending Tags
