CVE-2020-25498

MEDIUM

Beetel 777VR1 Firmware - Stored Cross-Site Scripting via NTP Server Name and URL Filter Keyword

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-25498. PoCs published by the-girl-who-lived.

AI-analyzed exploit summary This repository contains a proof-of-concept exploit for CVE-2020-25498, demonstrating a stored XSS vulnerability in the Beetel 777VR1 router via CSRF. The exploit leverages lack of input validation to inject malicious scripts into the NTP server configuration.

Description

Cross Site Scripting (XSS) vulnerability in Beetel router 777VR1 can be exploited via the NTP server name in System Time and "Keyword" in URL Filter.

Exploits (1)

nomisec WORKING POC 3 stars
by the-girl-who-lived · poc
https://github.com/the-girl-who-lived/CVE-2020-25498

This repository contains a proof-of-concept exploit for CVE-2020-25498, demonstrating a stored XSS vulnerability in the Beetel 777VR1 router via CSRF. The exploit leverages lack of input validation to inject malicious scripts into the NTP server configuration.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Beetel 777VR1 Router
No auth needed
Prerequisites: Victim must visit a malicious webpage or open a crafted HTML file · Router must be accessible on the local network
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Broken Link x_refsource_misc
http://beetel.com
Exploit, Third Party Advisory x_refsource_misc
https://github.com/the-girl-who-lived/CVE-2020-25498
Exploit, Third Party Advisory x_refsource_misc
https://youtu.be/qeVHvmS5wtI
Exploit, Third Party Advisory x_refsource_misc
https://youtu.be/u_6yBIMF74A

Scores

CVSS v3 4.8
EPSS 0.0109
EPSS Percentile 61.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-79
Status published
Products (1)
beetel/777vr1_firmware
Published Jan 06, 2021
Tracked Since Feb 18, 2026