CVE-2019-25282

CRITICAL WAF: Medium

CVSS 9.8 Published: 2026-01-08

CWE-601

V-SOL GPON/EPON OLT Platform v2.03 contains an open redirect vulnerability in the script that allows attackers to manipulate the 'parent' GET parameter. Attackers can craft malicious links that redirect logged-in users to arbitrary websites by exploiting improper input validation in the redirect mechanism.

WAF Coverage Analysis

Open Redirect Medium WAF Coverage

OWASP: A01:2021 Broken Access Control

941xxx - XSS / XXE

References

cxsecurity.com
exchange.xforce.ibmcloud.com
packetstormsecurity.com
www.vsolcn.com
www.zeroscience.mk

Back to CVE Database