Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Cross-site scripting (XSS) vulnerability on TP-Link WR841N
Malware and Vulnerabilities
April 23, 2025
TP-link
A stored cross-site scripting (XSS) vulnerability (CVE-2025-25427) has been identified in the “upnp.htm” page of TP-Link WR841N routers' web interface. This flaw allows remote attackers to inject JavaScript via the port mapping description.
Read More
TP-Link WR841N Routers
CVE-2025-25427
Publisher
Previous
Critical RCE Vulnerability in the Yi IOT XY-3820 Smart ...
Malware and Vulnerabilities
Next
Incorrect permission of environment variable (CVE-2025- ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/5287_Shutterstock_2279147515.png)
/https://cyware-ent.s3.amazonaws.com/image_bank/iStock-458119325.jpg)
