148 matches found
TOTOLINK LR1200GB Command Injection Vulnerability
The TOTOLINK LR1200GB is a wireless dual-band 4GLTE router from China's TOTOLINK Electronics TOTOLINK that supports 2.4GHz and 5GHz dual-band networks. The TOTOLINK LR1200GB suffers from a command injection vulnerability that stems from the cstecgi.cgi binary file failing to properly filter...
EUVD-2025-175305
A stack buffer overflow vulnerability exists in the ToToLink LR1200GB V9.1.0u.6619B20230130 and NR1800X V9.1.0u.6681B20230703 Router firmware within the cstecgi.cgi binary sub42F32C function. The web interface reads the "lang" parameter and constructs Help URL strings using sprintf into fixed-siz...
CVE-2025-60688
A stack buffer overflow vulnerability exists in the ToToLink LR1200GB V9.1.0u.6619B20230130 and NR1800X V9.1.0u.6681B20230703 Router firmware within the cstecgi.cgi binary setDefResponse function. The binary reads the "IpAddress" parameter from a web request and copies it into a fixed-size stack...
TOTOLINK LR1200GB 安全漏洞
TOTOLINK LR1200GB is a wireless dual-band 4G LTE router from China's Gion Electronics TOTOLINK. A security vulnerability exists in ToToLink LR1200GB version V9.1.0u.6619B20230130 and NR1800X version V9.1.0u.6681B20230703, which stems from improper handling of the lang parameter in the cstecgi.cgi...
TOTOLINK LR1200GB 安全漏洞
The TOTOLINK LR1200GB is a wireless dual-band 4GLTE router from China's TOTOLINK Electronics TOTOLINK that supports 2.4GHz and 5GHz dual-band networks. The TOTOLINK LR1200GB suffers from a command injection vulnerability that stems from the cstecgi.cgi binary file failing to properly filter...
TOTOLINK LR1200GB 安全漏洞
TOTOLINK LR1200GB is a wireless dual-band 4G LTE router from China's Gion Electronics TOTOLINK. A security vulnerability exists in the ToToLink LR1200GB version V9.1.0u.6619B20230130 and the NR1800X version V9.1.0u.6681B20230703, which originates from the presence of a stack buffer overflow in th...
CVE-2025-60684
CVE-2025-60684 affects ToToLink LR1200GB and NR1800X router firmware (LR1200GB: V9.1.0u.6619_B20230130; NR1800X: V9.1.0u.6681_B20230703). The vulnerability exists in the cstecgi.cgi binary (sub_42F32C) where the web interface reads the language parameter and builds Help URL strings using sprintf(...
EUVD-2024-16366
Malicious code in bioql PyPI...
EUVD-2024-16364
Malicious code in bioql PyPI...
EUVD-2024-16369
Malicious code in bioql PyPI...
EUVD-2024-16371
Malicious code in bioql PyPI...
EUVD-2024-16365
Malicious code in bioql PyPI...
EUVD-2024-17508
Malicious code in bioql PyPI...
EUVD-2024-16089
Malicious code in bioql PyPI...
EUVD-2024-16368
Malicious code in bioql PyPI...
EUVD-2024-16370
Malicious code in bioql PyPI...
VulnCheck KEV: CVE-2024-0292
A vulnerability classified as critical has been found in Totolink LR1200GB 9.1.0u.6619B20230130. Affected is the function setOpModeCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument hostName leads to os command injection. It is possible to launch the attack remotely. The explo...
CVE-2024-0292
A vulnerability classified as critical has been found in Totolink LR1200GB 9.1.0u.6619B20230130. Affected is the function setOpModeCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument hostName leads to os command injection. It is possible to launch the attack remotely. The explo...
CVE-2024-0291
A vulnerability was found in Totolink LR1200GB 9.1.0u.6619B20230130. It has been rated as critical. This issue affects the function UploadFirmwareFile of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument FileName leads to command injection. The attack may be initiated remotely. The...
CVE-2024-0293
A vulnerability classified as critical was found in Totolink LR1200GB 9.1.0u.6619B20230130. Affected by this vulnerability is the function setUploadSetting of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument FileName leads to os command injection. The attack can be launched remotel...