2 matches found
CVE-2026-5852 Totolink A7100RU CGI cstecgi.cgi setIptvCfg os command injection
A weakness has been identified in Totolink A7100RU 7.4cu.2313b20191024. Affected is the function setIptvCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the argument igmpVer causes os command injection. The attack is possible to be carried out remotely. The...
PT-2025-38584
Name of the Vulnerable Software and Affected Versions Tenda AC6 router firmware version 15.03.05.19 Description The Tenda AC6 router firmware contains a command injection issue in the formSetIptv function. This function handles requests to the /goform/SetIPTVCfg web interface. The list and vlanId...