The TOTOLINK N350RT is a small home router from Chinaβs Gion Electronics (TOTOLINK). The TOTOLINK N350RT suffers from a session hijacking vulnerability, which is caused by insufficient session expiration in the /cgi-bin/cstecgi.cgi script. An attacker could use this vulnerability to access other usersβ sessions.