Lucene search
K

3873 matches found

RedhatCVE
RedhatCVE
added 2026/04/14 7:22 p.m.6 views

CVE-2026-6131

A vulnerability was found in Totolink A7100RU 7.4cu.2313b20191024. Affected by this vulnerability is the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument command results in os command injection. The attack may be launched...

10CVSS6.9AI score0.01823EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/14 1:22 a.m.4 views

CVE-2026-5976

A security flaw has been discovered in Totolink A7100RU 7.4cu.2313b20191024. This affects the function setStorageCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument sambaEnabled results in os command injection. It is possible to initiate th...

10CVSS5.6AI score0.01803EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/14 1:22 a.m.4 views

CVE-2026-5850

A vulnerability was identified in Totolink A7100RU 7.4cu.2313b20191024. This affects the function setVpnPassCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument pptpPassThru leads to os command injection. Remote exploitation of the attack is possible...

10CVSS5.6AI score0.15952EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/13 7:23 p.m.6 views

CVE-2026-6115

A flaw has been found in Totolink A7100RU 7.4cu.2313b20191024. This affects the function setAppCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipulation of the argument enable can lead to os command injection. The attack may be launched remotely. The exploit has...

10CVSS5.5AI score0.01823EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/13 5:30 p.m.4 views

CVE-2026-6195

A security vulnerability has been detected in Totolink A7100RU 7.4cu.2313b20191024. Affected by this issue is the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument admpass leads to os command injection. The attack can be...

10CVSS5.6AI score0.14277EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/04/13 5:30 p.m.24 views

CVE-2026-6195

Totolink A7100RU (firmware 7.4cu.2313_b20191024) is affected by a vulnerability in CGI Handler’s /cgi-bin/cstecgi.cgi setPasswordCfg. Manipulating the admpass argument enables os command injection and can be exploited remotely. The exploit is publicly disclosed. No additional technical details (e...

10CVSS7AI score0.14277EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/13 5:30 p.m.82 views

CVE-2026-6195 Totolink A7100RU CGI cstecgi.cgi setPasswordCfg os command injection

A security vulnerability has been detected in Totolink A7100RU 7.4cu.2313b20191024. Affected by this issue is the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument admpass leads to os command injection. The attack can be...

10CVSS0.14277EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/04/13 1:22 p.m.5 views

CVE-2026-6116

A vulnerability has been found in Totolink A7100RU 7.4cu.2313b20191024. This vulnerability affects the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument ip leads to os command injection. Remote exploitation of the attack is...

10CVSS6.8AI score0.01803EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/13 6:30 a.m.3 views

EUVD-2026-21851

A flaw has been found in Totolink N300RH 6.1c.1353B20190305. Affected is the function setUpgradeUboot of the file upgrade.so. This manipulation of the argument FileName causes os command injection. The attack is possible to be carried out remotely. The exploit has been published and may be used...

7.5CVSS5.5AI score0.01409EPSS
Exploits0References6
NVD
NVD
added 2026/04/13 5:16 a.m.6 views

CVE-2026-6158

A flaw has been found in Totolink N300RH 6.1c.1353B20190305. Affected is the function setUpgradeUboot of the file upgrade.so. This manipulation of the argument FileName causes os command injection. The attack is possible to be carried out remotely. The exploit has been published and may be used...

7.5CVSS0.01409EPSS
Exploits0References5
NVD
NVD
added 2026/04/13 4:16 a.m.1 views

CVE-2026-6155

A weakness has been identified in Totolink A7100RU 7.4cu.2313. The impacted element is the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipulation of the argument pppoeServiceName can lead to os command injection. The attack may be launched...

10CVSS0.01803EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/13 4:0 a.m.1 views

CVE-2026-6158

A flaw has been found in Totolink N300RH 6.1c.1353B20190305. Affected is the function setUpgradeUboot of the file upgrade.so. This manipulation of the argument FileName causes os command injection. The attack is possible to be carried out remotely. The exploit has been published and may be used...

7.5CVSS6.8AI score0.01409EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/13 4:0 a.m.5 views

CVE-2026-6158 Totolink N300RH upgrade.so setUpgradeUboot os command injection

A flaw has been found in Totolink N300RH 6.1c.1353B20190305. Affected is the function setUpgradeUboot of the file upgrade.so. This manipulation of the argument FileName causes os command injection. The attack is possible to be carried out remotely. The exploit has been published and may be used...

7.5CVSS6.8AI score0.01409EPSS
Exploits0References5
CVE
CVE
added 2026/04/13 4:0 a.m.11 views

CVE-2026-6158

The CVE-2026-6158 entry concerns Totolink N300RH (firmware 6.1c.1353_B20190305). The vulnerability lies in the upgrade subsystem: the function setUpgradeUboot in upgrade.so accepts a FileName argument and can be manipulated to trigger an OS command injection. This flaw enables remote execution an...

7.5CVSS6.8AI score0.01409EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/13 3:15 a.m.25 views

CVE-2026-6155 Totolink A7100RU CGI cstecgi.cgi setWanCfg os command injection

A weakness has been identified in Totolink A7100RU 7.4cu.2313. The impacted element is the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipulation of the argument pppoeServiceName can lead to os command injection. The attack may be launched...

10CVSS0.01803EPSS
Exploits0References5
CVE
CVE
added 2026/04/13 3:15 a.m.8 views

CVE-2026-6155

CVE-2026-6155 affects Totolink A7100RU running 7.4cu.2313. The vulnerability is in the CGI handler: function setWanCfg in file /cgi-bin/cstecgi.cgi, where manipulation of the argument pppoeServiceName can lead to an OS command injection . The attack may be launched remotely over the network, with...

10CVSS7AI score0.01803EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/13 3:15 a.m.3 views

CVE-2026-6155

A weakness has been identified in Totolink A7100RU 7.4cu.2313. The impacted element is the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipulation of the argument pppoeServiceName can lead to os command injection. The attack may be launched...

10CVSS7AI score0.01803EPSS
Exploits0References5Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/13 3:0 a.m.1 views

CVE-2026-6154

A security flaw has been discovered in Totolink A7100RU 7.4cu.2313b20191024. The affected element is the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument wizard results in os command injection. The attack may be initiat...

10CVSS7AI score0.01823EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/13 3:0 a.m.1 views

CVE-2026-6154 Totolink A7100RU CGI cstecgi.cgi setWizardCfg os command injection

A security flaw has been discovered in Totolink A7100RU 7.4cu.2313b20191024. The affected element is the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument wizard results in os command injection. The attack may be initiat...

10CVSS7AI score0.01823EPSS
Exploits0References5
NVD
NVD
added 2026/04/13 1:16 a.m.5 views

CVE-2026-6141

A vulnerability was determined in danielmiessler PersonalAIInfrastructure up to 2.3.0. Affected is an unknown function of the file Skills/Parser/Tools/parseurl.ts. Executing a manipulation can lead to os command injection. The attack may be launched remotely. The exploit has been publicly disclos...

6.5CVSS0.0111EPSS
Exploits0References7
Rows per page
Query Builder