Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

32 matches found

NVD
NVDadded 2026/04/10 6:16 a.m.3 views

CVE-2026-6025

A vulnerability was identified in Totolink A7100RU 7.4cu.2313b20191024. This affects the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument enable leads to os command injection. It is possible to launch the attack remotely. The...

10CVSS0.01221EPSS
Exploits0References5
CVE
CVEadded 2026/04/10 5:30 a.m.8 views

CVE-2026-6025

CVE-2026-6025 affects Totolink A7100RU (firmware 7.4cu.2313_b20191024). The vulnerability resides in the CGI handler function setSyslogCfg within /cgi-bin/cstecgi.cgi , where improper handling of the input argument enables OS command injection . The issue can be triggered remotely over the networ...

10CVSS7AI score0.01221EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/04/10 5:30 a.m.0 views

CVE-2026-6025

A vulnerability was identified in Totolink A7100RU 7.4cu.2313b20191024. This affects the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument enable leads to os command injection. It is possible to launch the attack remotely. The...

10CVSS7AI score0.01221EPSS
Exploits0References5Affected Software1
EUVD
EUVDadded 2026/03/31 3:31 a.m.1 views

EUVD-2026-17279

A security flaw has been discovered in Totolink A3300R 17.0.0cu.557b20221024. Affected is the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi. Performing a manipulation of the argument provided results in command injection. The attack may be initiated remotely. The exploit has been release...

7.5CVSS5.7AI score0.02184EPSS
Exploits1References6
NVD
NVDadded 2026/03/31 2:15 a.m.2 views

CVE-2026-5176

A security flaw has been discovered in Totolink A3300R 17.0.0cu.557b20221024. Affected is the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi. Performing a manipulation of the argument provided results in command injection. The attack may be initiated remotely. The exploit has been release...

9.8CVSS0.02184EPSS
Exploits1References5
ATTACKERKB
ATTACKERKBadded 2026/03/31 1:15 a.m.1 views

CVE-2026-5176

A security flaw has been discovered in Totolink A3300R 17.0.0cu.557b20221024. Affected is the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi. Performing a manipulation of the argument provided results in command injection. The attack may be initiated remotely. The exploit has been release...

7.5CVSS5.7AI score0.02184EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichmentadded 2026/03/31 1:15 a.m.1 views

CVE-2026-5176 Totolink A3300R cstecgi.cgi setSyslogCfg command injection

A security flaw has been discovered in Totolink A3300R 17.0.0cu.557b20221024. Affected is the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi. Performing a manipulation of the argument provided results in command injection. The attack may be initiated remotely. The exploit has been release...

7.5CVSS5.7AI score0.02184EPSS
Exploits1References5
Cvelist
Cvelistadded 2026/03/31 1:15 a.m.23 views

CVE-2026-5176 Totolink A3300R cstecgi.cgi setSyslogCfg command injection

A security flaw has been discovered in Totolink A3300R 17.0.0cu.557b20221024. Affected is the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi. Performing a manipulation of the argument provided results in command injection. The attack may be initiated remotely. The exploit has been release...

7.5CVSS0.02184EPSS
Exploits1References5
CVE
CVEadded 2026/03/31 1:15 a.m.4 views

CVE-2026-5176

CVE-2026-5176 affects Totolink A3300R (firmware 17.0.0cu.557_b20221024). The vulnerability is in the function setSyslogCfg of /cgi-bin/cstecgi.cgi, where manipulating an argument enables command injection. Impact is remote and notable across confidentiality, integrity, and availability; exploitat...

9.8CVSS6.8AI score0.02184EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologiesadded 2026/03/31 12:0 a.m.1 views

PT-2026-29182

A security flaw has been discovered in Totolink A3300R 17.0.0cu.557 b20221024. Affected is the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi. Performing a manipulation of the argument provided results in command injection. The attack may be initiated remotely. The exploit has been releas...

7.5CVSS5.7AI score0.02184EPSS
Exploits1References6
RedhatCVE
RedhatCVEadded 2025/10/28 10:52 a.m.1 views

CVE-2025-12260

A vulnerability has been found in TOTOLINK A3300R 17.0.0cu.557B20221024. The impacted element is the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi of the component POST Parameter Handler. Such manipulation of the argument enable leads to stack-based buffer overflow. It is possible to...

9CVSS7AI score0.00314EPSS
Exploits1References1
NVD
NVDadded 2025/10/27 10:15 a.m.1 views

CVE-2025-12260

A vulnerability has been found in TOTOLINK A3300R 17.0.0cu.557B20221024. The impacted element is the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi of the component POST Parameter Handler. Such manipulation of the argument enable leads to stack-based buffer overflow. It is possible to...

9CVSS0.00314EPSS
Exploits1References5
OSV
OSVadded 2025/10/27 10:15 a.m.0 views

CVE-2025-12260

A vulnerability has been found in TOTOLINK A3300R 17.0.0cu.557B20221024. The impacted element is the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi of the component POST Parameter Handler. Such manipulation of the argument enable leads to stack-based buffer overflow. It is possible to...

8.7CVSS6.2AI score0.00314EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2025/10/27 10:2 a.m.2 views

CVE-2025-12260 TOTOLINK A3300R POST Parameter cstecgi.cgi setSyslogCfg stack-based overflow

A vulnerability has been found in TOTOLINK A3300R 17.0.0cu.557B20221024. The impacted element is the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi of the component POST Parameter Handler. Such manipulation of the argument enable leads to stack-based buffer overflow. It is possible to...

9CVSS8.9AI score0.00314EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/27 10:2 a.m.1 views

EUVD-2025-36154

A vulnerability has been found in TOTOLINK A3300R 17.0.0cu.557B20221024. The impacted element is the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi of the component POST Parameter Handler. Such manipulation of the argument enable leads to stack-based buffer overflow. It is possible to...

9CVSS6.7AI score0.00314EPSS
Exploits1References6
Cvelist
Cvelistadded 2025/10/27 10:2 a.m.4 views

CVE-2025-12260 TOTOLINK A3300R POST Parameter cstecgi.cgi setSyslogCfg stack-based overflow

A vulnerability has been found in TOTOLINK A3300R 17.0.0cu.557B20221024. The impacted element is the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi of the component POST Parameter Handler. Such manipulation of the argument enable leads to stack-based buffer overflow. It is possible to...

9CVSS0.00314EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2025/10/27 12:0 a.m.2 views

PT-2025-43921

Name of the Vulnerable Software and Affected Versions TOTOLINK A3300R version 17.0.0cu.557 B20221024 Description A flaw exists in TOTOLINK A3300R version 17.0.0cu.557 B20221024 that allows for remote manipulation of the enable argument within the setSyslogCfg function located in the...

9CVSS6.6AI score0.00314EPSS
Exploits1References8
RedhatCVE
RedhatCVEadded 2025/05/23 8:34 a.m.2 views

CVE-2024-42743

In TOTOLINK X5000r v9.1.0cu.2350b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command injection vulnerability in setSyslogCfg . Authenticated Attackers can send malicious packet to execute arbitrary commands...

8.8CVSS6.1AI score0.05403EPSS
Exploits1References1
NVD
NVDadded 2024/08/18 4:15 p.m.15 views

CVE-2024-7907

A vulnerability, which was classified as critical, has been found in TOTOLINK X6000R 9.4.0cu.85220230719. This issue affects the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument rtLogServer leads to command injection. The attack may be initiated remotely. T...

9.8CVSS0.02036EPSS
Exploits1References4
OSV
OSVadded 2024/08/18 4:15 p.m.1 views

CVE-2024-7907

A vulnerability, which was classified as critical, has been found in TOTOLINK X6000R 9.4.0cu.85220230719. This issue affects the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument rtLogServer leads to command injection. The attack may be initiated remotely. T...

9.8CVSS5.6AI score0.02036EPSS
Exploits1References4
Rows per page
Query Builder