89 matches found
PT-2025-18658 · Totolink · Totolink Ca600-Poe
Name of the Vulnerable Software and Affected Versions: TOTOLINK CA600-PoE version 5.3c.6665 B20180820 Description: The issue is related to a command injection vulnerability in the msg process function via the Url parameter. This allows attackers to execute arbitrary commands by crafting a specifi...
PT-2025-18665 · Totolink · Totolink Ca600-Poe
Name of the Vulnerable Software and Affected Versions: TOTOLINK CA600-PoE version 5.3c.6665 B20180820 Description: A command injection issue was discovered in the setUpgradeFW function through the FileName parameter. This issue allows attackers to execute arbitrary commands via a manipulated...
PT-2025-18656 · Totolink · Totolink Ca600-Poe
Name of the Vulnerable Software and Affected Versions: TOTOLINK CA600-PoE version 5.3c.6665 B20180820 Description: A command injection issue was found in the recvUpgradeNewFw function via the fwUrl parameter, allowing attackers to execute arbitrary commands through a crafted request...
PT-2025-18664 · Totolink · Totolink Ca600-Poe
Name of the Vulnerable Software and Affected Versions: TOTOLINK CA600-PoE version 5.3c.6665 B20180820 Description: A command injection issue was discovered in the CloudSrvUserdataVersionCheck function through the url parameter. This issue allows attackers to execute arbitrary commands via a...
PT-2025-18660 · Totolink · Totolink Ca600-Poe
Name of the Vulnerable Software and Affected Versions: TOTOLINK CA600-PoE version 5.3c.6665 B20180820 Description: A command injection issue was discovered in the CloudSrvUserdataVersionCheck function via the magicid parameter. This issue allows attackers to execute arbitrary commands through a...
PT-2025-18663 · Totolink · Totolink Ca600-Poe
Name of the Vulnerable Software and Affected Versions: TOTOLINK CA600-PoE version V5.3c.6665 B20180820 Description: A command injection issue was discovered in the msg process function via the Port parameter. This issue allows attackers to execute arbitrary commands through a manipulated request...
PT-2025-18662 · Totolink · Totolink Ca600-Poe
Name of the Vulnerable Software and Affected Versions: TOTOLINK CA600-PoE version 5.3c.6665 B20180820 Description: The issue is related to a command injection vulnerability in the CloudSrvUserdataVersionCheck function via the version parameter. This allows attackers to execute arbitrary commands ...
PT-2025-18661 · Totolink · Totolink Ca600-Poe
Name of the Vulnerable Software and Affected Versions: TOTOLINK CA600-PoE version 5.3c.6665 B20180820 Description: A command injection issue was discovered in the CloudSrvUserdataVersionCheck function via the svn parameter. This issue allows attackers to execute arbitrary commands through a...
PT-2025-18657 · Totolink · Totolink Ca600-Poe
Name of the Vulnerable Software and Affected Versions: TOTOLINK CA600-PoE version 5.3c.6665 B20180820 Description: A command injection issue was discovered in the setWebWlanIdx function through the webWlanIdx parameter. This issue allows attackers to execute arbitrary commands via a manipulated...