16 matches found
CVE-2025-51451
In TOTOLINK EX1200T firmware 4.1.2cu.5215, an attacker can bypass login by sending a specific request through formLoginAuth.htm...
PT-2025-33019 · Totolink · Totolink Ex1200T
Name of the Vulnerable Software and Affected Versions: TOTOLINK EX1200T firmware version 4.1.2cu.5215 Description: An attacker can bypass login by sending a specific request through the formLoginAuth.htm endpoint. Recommendations: Apply a firmware update that addresses this login bypass issue. As...
CVE-2025-28022
TOTOLINK A810R V4.1.2cu.5182B20201026 was found to contain a buffer overflow vulnerability in downloadFile.cgi through the v25 parameter...
CVE-2025-28018
TOTOLINK A800R V4.1.2cu.5137B20200730 was found to contain a buffer overflow vulnerability in downloadFile.cgi through the v14 parameter...
CVE-2024-53335
TOTOLINK A810R V4.1.2cu.5182B20201026 is vulnerable to Buffer Overflow in downloadFlile.cgi...
CVE-2022-37840
In TOTOLINK A860R V4.1.2cu.5182B20201027, the main function in downloadfile.cgi has a buffer overflow vulnerability...
CVE-2022-37839
TOTOLINK A860R V4.1.2cu.5182B20201027 is vulnerable to Buffer Overflow via Cstecgi.cgi...
PT-2022-11736 · Totolink · Totolink Ex1200T
Name of the Vulnerable Software and Affected Versions: TOTOLINK EX1200T version 4.1.2cu.5215 Description: An attacker can obtain sensitive information, such as wifikey, without authorization. Recommendations: For TOTOLINK EX1200T version 4.1.2cu.5215, at the moment, there is no information about ...
PT-2022-11738 · Totolink · Totolink Ex1200T
Name of the Vulnerable Software and Affected Versions: TOTOLINK EX1200T version 4.1.2cu.5215 Description: The issue allows an attacker to obtain sensitive information, such as wifikey, without authorization through the getSysStatusCfg function. Recommendations: For TOTOLINK EX1200T version...
CVE-2021-42877
TOTOLINK EX1200T V4.1.2cu.5215 contains a denial of service vulnerability in function RebootSystem of the file lib/cstemodules/system which can reboot the system...
CVE-2021-42872
TOTOLINK EX1200T V4.1.2cu.5215 is affected by a command injection vulnerability that can remotely execute arbitrary code...
CVE-2022-29645
TOTOLINK A3100R V4.1.2cu.5050B20200504 and V4.1.2cu.5247B20211129 were discovered to contain a hard coded password for root stored in the component /etc/shadow.sample...
TOTOLINK A3100R 缓冲区错误漏洞
TOTOLINK A3100R is a series of wireless routers from China Gion Electronics TOTOLINK.TOTOLINK A3100R V4.1.2cu.5050B20200504 and V4.1.2cu.5247B20211129 is vulnerable to a buffer overflow vulnerability, which can be exploited by attackers to cause a denial of service DoS via a crafted POST request ...
CVE-2022-25079
TOTOLink A810R V4.1.2cu.5182B20201026 was discovered to contain a command injection vulnerability in the "Main" function. This vulnerability allows attackers to execute arbitrary commands via the QUERYSTRING parameter...
TotoLink A3600R 操作系统命令注入漏洞
TOTOLink A3600R is a wireless router from TotoLink, China.TOTOLink A3600R V4.1.2cu.5182B20201102 is vulnerable to command injection, which can be exploited by attackers to execute arbitrary commands via the QUERYSTRING parameter...
PT-2022-3856 · Totolink · Totolink A810R
Name of the Vulnerable Software and Affected Versions: TOTOLink A810R version 4.1.2cu.5182 B20201026 Description: The issue is related to a command injection vulnerability in the "Main" function of the TOTOLink A810R router's firmware. This vulnerability is caused by the lack of input data...