Lucene search
K

1006 matches found

EUVD
EUVD
added 2026/05/24 1:45 p.m.15 views

EUVD-2026-31597

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument command causes os command injection. The attack is possible to be...

10CVSS7AI score0.01732EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/24 1:45 p.m.12 views

CVE-2026-9385 Totolink A8000RU Web Management cstecgi.cgi setTracerouteCfg os command injection

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument command causes os command injection. The attack is possible to be...

10CVSS7AI score0.01732EPSS
Exploits0References5
CVE
CVE
added 2026/05/24 1:45 p.m.24 views

CVE-2026-9385

Totolink A8000RU Web Management (cgi-bin/cstecgi.cgi: setTracerouteCfg) is vulnerable to os command injection due to argument manipulation. Affects version 7.1cu.643_b20200521; vulnerability is remotely exploitable and exploit publicly disclosed. Public details indicate high impact on confidentia...

10CVSS7AI score0.01732EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/24 1:30 p.m.26 views

CVE-2026-9384 Totolink A8000RU Web Management cstecgi.cgi setDiagnosisCfg os command injection

A vulnerability was found in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument ip results in os command injection. The attack can be executed...

10CVSS0.01732EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/24 12:0 a.m.14 views

PT-2026-42957

A weakness has been identified in Totolink A8000RU 7.1cu.643 b20200521. The impacted element is the function setScheduleCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument mode can lead to os command injection. It is possible to...

10CVSS7.1AI score0.0209EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/24 12:0 a.m.11 views

PT-2026-42976

Name of the Vulnerable Software and Affected Versions Totolink A8000RU version 7.1cu.643 b20200521 Description An OS command injection flaw exists in the Web Management Interface. The issue occurs within the setGameSpeedCfg function of the '/cgi-bin/cstecgi.cgi' endpoint. Remote exploitation is...

10CVSS7.5AI score0.01732EPSS
Exploits0References8
CNNVD
CNNVD
added 2026/05/24 12:0 a.m.8 views

TOTOLINK A8000RU 操作系统命令注入漏洞

TOTOLINK A8000RU is a wireless router produced by TOTOLINK, a Chinese company. The TOTOLINK A8000RU 7.1cu.643b20200521 version contains a vulnerability related to operating system command injection. This vulnerability stems from improper handling of the resetFlags parameter in the function...

10CVSS7.3AI score0.01732EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/24 12:0 a.m.11 views

PT-2026-42978

Name of the Vulnerable Software and Affected Versions Totolink A8000RU version 7.1cu.643 b20200521 Description An OS command injection issue exists in the Web Management Interface. This occurs when the firewallType argument is manipulated within the setFirewallType function of the...

10CVSS7.5AI score0.01732EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/05/24 12:0 a.m.10 views

TOTOLINK A8000RU 操作系统命令注入漏洞

TOTOLINK A8000RU is a wireless router produced by TOTOLINK, a Chinese company. The TOTOLINK A8000RU 7.1cu.643b20200521 version contains an operating system command injection vulnerability. This vulnerability stems from improper handling of the provider parameter in the setDdnsCfg function of the...

10CVSS7.3AI score0.01732EPSS
Exploits0References5
NVD
NVD
added 2026/05/05 5:16 a.m.30 views

CVE-2026-7823

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. Affected is the function setAppFilterCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument enable results in os command injection. The attack may be launched remotely. The exploit has been released to the...

10CVSS0.01788EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/05 4:45 a.m.12 views

CVE-2026-7823

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. Affected is the function setAppFilterCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument enable results in os command injection. The attack may be launched remotely. The exploit has been released to the...

10CVSS7AI score0.01788EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/05/05 4:45 a.m.15 views

CVE-2026-7823

CVE-2026-7823 affects Totolink A8000RU firmware 7.1cu.643_b20200521. The vulnerable component is the function setAppFilterCfg in /cgi-bin/cstecgi.cgi, where manipulation of the enable argument enables OS command injection. This attack is remote, with public exploits available, and the CVSS metric...

10CVSS7AI score0.01788EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/05 12:0 a.m.10 views

TOTOLINK A8000RU 命令注入漏洞

TOTOLINK A8000RU is a wireless router produced by TOTOLINK, a Chinese company. The TOTOLINK A8000RU 7.1cu.643b20200521 version contains a command injection vulnerability. This vulnerability stems from the operation of the setAppFilterCfg function in the /cgi-bin/cstecgi.cgi file, specifically wit...

10CVSS7.3AI score0.01788EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.12 views

PT-2026-36975

Name of the Vulnerable Software and Affected Versions Totolink A8000RU version 7.1cu.643 b20200521 Description A security flaw allows remote OS command injection via the manipulation of the enable argument. This issue occurs within the setAppFilterCfg function located in the "/cgi-bin/cstecgi.cgi...

10CVSS7.2AI score0.01788EPSS
Exploits0References18
NVD
NVD
added 2026/05/04 10:16 a.m.16 views

CVE-2026-7750

A vulnerability was detected in Totolink N300RH 3.2.4-B20220812. This vulnerability affects the function setMacFilterRules of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument macaddress results in buffer overflow. The attack may be launched...

9CVSS0.00463EPSS
Exploits0References5
NVD
NVD
added 2026/05/04 9:16 a.m.11 views

CVE-2026-7747

A security flaw has been discovered in Totolink N300RH 3.2.4-B20220812. Affected by this vulnerability is the function loginauth of the file /cgi-bin/cstecgi.cgi of the component Parameter Handler. Performing a manipulation of the argument Password results in buffer overflow. The attack can be...

10CVSS0.00606EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/04 8:45 a.m.3 views

CVE-2026-7749

A security vulnerability has been detected in Totolink N300RH 3.2.4-B20220812. This affects the function setWanConfig of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument priDns leads to buffer overflow. The attack may be initiated remotely. The...

9CVSS7.8AI score0.00563EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/04 8:45 a.m.54 views

CVE-2026-7749 Totolink N300RH POST Request cstecgi.cgi setWanConfig buffer overflow

A security vulnerability has been detected in Totolink N300RH 3.2.4-B20220812. This affects the function setWanConfig of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument priDns leads to buffer overflow. The attack may be initiated remotely. The...

9CVSS0.00563EPSS
Exploits0References5
NVD
NVD
added 2026/05/04 3:16 a.m.12 views

CVE-2026-7721

A security vulnerability has been detected in Totolink WA300 5.2cu.7112B20190227. This affects the function NTPSyncWithHost of the file /cgi-bin/cstecgi.cgi. Such manipulation of the argument hostTime leads to command injection. The attack can be executed remotely. The exploit has been disclosed...

6.5CVSS0.00916EPSS
Exploits0References5
NVD
NVD
added 2026/05/04 2:15 a.m.27 views

CVE-2026-7718

A vulnerability was identified in Totolink WA300 5.2cu.7112B20190227. Impacted is the function setWebWlanIdx of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument webWlanIdx leads to command injection. The attack may be initiated remotely. The...

6.5CVSS0.00916EPSS
Exploits0References5
Rows per page
Query Builder