CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-25431

Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (XSS) vulnerability via the The ssid key of wifi_data parameter on the /captive_portal.htm page.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 7.4%

CVSS Severity

CVSS v3 Score 4.8

References

https://instinctive-acapella-fc7.notion.site/Trendnet-TEW-929DRU-XSS-17b15d9d4d26806a90f3d830a6143ebe
https://instinctive-acapella-fc7.notion.site/Trendnet-TEW-929DRU-XSS-17b15d9d4d26806a90f3d830a6143ebe

Products affected by CVE-2025-25431

Trendnet » Tew-929dru » Version: N/A

cpe:2.3:h:trendnet:tew-929dru:-
Trendnet » Tew-929dru Firmware » Version: 1.0.0.10

cpe:2.3:o:trendnet:tew-929dru_firmware:1.0.0.10

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-25431

Products

Pricing

Contact Us