Lucene search
+L

16 matches found

NVD
NVD
added 2025/08/13 5:15 p.m.18 views

CVE-2025-51451

In TOTOLINK EX1200T firmware 4.1.2cu.5215, an attacker can bypass login by sending a specific request through formLoginAuth.htm...

9.8CVSS0.00384EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/08/13 12:0 a.m.9 views

PT-2025-33019 · Totolink · Totolink Ex1200T

Name of the Vulnerable Software and Affected Versions: TOTOLINK EX1200T firmware version 4.1.2cu.5215 Description: An attacker can bypass login by sending a specific request through the formLoginAuth.htm endpoint. Recommendations: Apply a firmware update that addresses this login bypass issue. As...

9.8CVSS6.5AI score0.00384EPSS
Exploits0References7
OSV
OSV
added 2025/04/23 5:16 p.m.8 views

CVE-2025-28022

TOTOLINK A810R V4.1.2cu.5182B20201026 was found to contain a buffer overflow vulnerability in downloadFile.cgi through the v25 parameter...

7.3CVSS6.1AI score0.00351EPSS
Exploits1References2
OSV
OSV
added 2025/04/23 5:16 p.m.8 views

CVE-2025-28018

TOTOLINK A800R V4.1.2cu.5137B20200730 was found to contain a buffer overflow vulnerability in downloadFile.cgi through the v14 parameter...

7.3CVSS6.1AI score0.00373EPSS
Exploits1References1
OSV
OSV
added 2024/11/21 6:15 p.m.7 views

CVE-2024-53335

TOTOLINK A810R V4.1.2cu.5182B20201026 is vulnerable to Buffer Overflow in downloadFlile.cgi...

7.8CVSS5.8AI score0.00251EPSS
Exploits1References1
OSV
OSV
added 2022/09/06 5:15 p.m.4 views

CVE-2022-37840

In TOTOLINK A860R V4.1.2cu.5182B20201027, the main function in downloadfile.cgi has a buffer overflow vulnerability...

9.8CVSS6.1AI score0.00805EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/09/06 5:15 p.m.2 views

CVE-2022-37839

TOTOLINK A860R V4.1.2cu.5182B20201027 is vulnerable to Buffer Overflow via Cstecgi.cgi...

9.8CVSS5.8AI score0.00805EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/06/03 12:0 a.m.5 views

PT-2022-11736 · Totolink · Totolink Ex1200T

Name of the Vulnerable Software and Affected Versions: TOTOLINK EX1200T version 4.1.2cu.5215 Description: An attacker can obtain sensitive information, such as wifikey, without authorization. Recommendations: For TOTOLINK EX1200T version 4.1.2cu.5215, at the moment, there is no information about ...

7.5CVSS7.4AI score0.01369EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/06/03 12:0 a.m.9 views

PT-2022-11738 · Totolink · Totolink Ex1200T

Name of the Vulnerable Software and Affected Versions: TOTOLINK EX1200T version 4.1.2cu.5215 Description: The issue allows an attacker to obtain sensitive information, such as wifikey, without authorization through the getSysStatusCfg function. Recommendations: For TOTOLINK EX1200T version...

7.5CVSS7.4AI score0.01369EPSS
Exploits1References3
OSV
OSV
added 2022/06/02 8:15 p.m.5 views

CVE-2021-42877

TOTOLINK EX1200T V4.1.2cu.5215 contains a denial of service vulnerability in function RebootSystem of the file lib/cstemodules/system which can reboot the system...

7.5CVSS5.8AI score0.0164EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/06/02 2:15 p.m.3 views

CVE-2021-42872

TOTOLINK EX1200T V4.1.2cu.5215 is affected by a command injection vulnerability that can remotely execute arbitrary code...

10CVSS7.5AI score0.06755EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2022/05/18 12:15 p.m.7 views

CVE-2022-29645

TOTOLINK A3100R V4.1.2cu.5050B20200504 and V4.1.2cu.5247B20211129 were discovered to contain a hard coded password for root stored in the component /etc/shadow.sample...

10CVSS5.8AI score0.01407EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/05/18 12:0 a.m.4 views

TOTOLINK A3100R 缓冲区错误漏洞

TOTOLINK A3100R is a series of wireless routers from China Gion Electronics TOTOLINK.TOTOLINK A3100R V4.1.2cu.5050B20200504 and V4.1.2cu.5247B20211129 is vulnerable to a buffer overflow vulnerability, which can be exploited by attackers to cause a denial of service DoS via a crafted POST request ...

7.8CVSS6AI score0.01124EPSS
Exploits1References2
OSV
OSV
added 2022/02/24 3:15 p.m.5 views

CVE-2022-25079

TOTOLink A810R V4.1.2cu.5182B20201026 was discovered to contain a command injection vulnerability in the "Main" function. This vulnerability allows attackers to execute arbitrary commands via the QUERYSTRING parameter...

9.8CVSS7.5AI score0.03189EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/02/24 12:0 a.m.5 views

TotoLink A3600R 操作系统命令注入漏洞

TOTOLink A3600R is a wireless router from TotoLink, China.TOTOLink A3600R V4.1.2cu.5182B20201102 is vulnerable to command injection, which can be exploited by attackers to execute arbitrary commands via the QUERYSTRING parameter...

9.8CVSS6AI score0.03189EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/02/22 12:0 a.m.4 views

PT-2022-3856 · Totolink · Totolink A810R

Name of the Vulnerable Software and Affected Versions: TOTOLink A810R version 4.1.2cu.5182 B20201026 Description: The issue is related to a command injection vulnerability in the "Main" function of the TOTOLink A810R router's firmware. This vulnerability is caused by the lack of input data...

10CVSS9.8AI score0.03189EPSS
Exploits1References4
Rows per page
Query Builder