28 matches found
CVE-2026-5184
A vulnerability was identified in TRENDnet TEW-713RE up to 1.02. The impacted element is an unknown function of the file /goform/setSysAdm. The manipulation of the argument admuser leads to command injection. The attack can be initiated remotely. The exploit is publicly available and might be use...
EUVD-2026-17335
A vulnerability was identified in TRENDnet TEW-713RE up to 1.02. The impacted element is an unknown function of the file /goform/setSysAdm. The manipulation of the argument admuser leads to command injection. The attack can be initiated remotely. The exploit is publicly available and might be use...
CVE-2026-5184
A vulnerability was identified in TRENDnet TEW-713RE up to 1.02. The impacted element is an unknown function of the file /goform/setSysAdm. The manipulation of the argument admuser leads to command injection. The attack can be initiated remotely. The exploit is publicly available and might be use...
TRENDnet TEW-713RE 命令注入漏洞
TRENDnet TEW-713RE is a wireless network range extender produced by the TRENDnet company. Versions of TRENDnet TEW-713RE prior to 1.02 contained a command injection vulnerability. This vulnerability stemmed from incorrect handling of the parameter “admuser” in the file/goform/setSysAdm, which cou...
EUVD-2023-41091
Malicious code in bioql PyPI...
CVE-2023-37171
TOTOLINK A3300R V17.0.0cu.557B20221024 was discovered to contain a command injection vulnerability via the admuser parameter in the setPasswordCfg function...
CVE-2023-24160
TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the admuser parameter in the setPasswordCfg function...
CVE-2022-42999
D-Link DIR-816 A2 1.10 B05 was discovered to contain multiple command injection vulnerabilities via the admuser and admpass parameters at /goform/setSysAdm...
CVE-2023-51025
TOTOlink EX1800T V9.1.0cu.2112B20220316 is vulnerable to an unauthorized arbitrary command execution in the ‘admuser’ parameter of the setPasswordCfg interface of the cstecgi .cgi...
CVE-2023-51025
TOTOlink EX1800T V9.1.0cu.2112B20220316 is vulnerable to an unauthorized arbitrary command execution in the ‘admuser’ parameter of the setPasswordCfg interface of the cstecgi .cgi...
Command injection
TOTOlink EX1800T V9.1.0cu.2112B20220316 is vulnerable to an unauthorized arbitrary command execution in the ‘admuser’ parameter of the setPasswordCfg interface of the cstecgi .cgi...
CVE-2023-51025
CVE-2023-51025 affects TOTOLINK EX1800T v9.1.0cu.2112_B20220316. The vulnerability is an unauthorized arbitrary command execution in the admuser parameter of the setPasswordCfg interface of the cstecgi.cgi, caused by inadequate filtering of constructed commands. Impact is high (arbitrary commands...
PT-2023-31740 · Totolink · Totolink Ex1800T
Name of the Vulnerable Software and Affected Versions: TOTOlink EX1800T version 9.1.0cu.2112 B20220316 Description: The issue concerns an unauthorized arbitrary command execution in the admuser parameter of the "setPasswordCfg" interface of the cstecgi .cgi. This allows for potential exploitation...
CVE-2023-37171
TOTOLINK A3300R V17.0.0cu.557B20221024 was discovered to contain a command injection vulnerability via the admuser parameter in the setPasswordCfg function...
CVE-2023-37171
TOTOLINK A3300R V17.0.0cu.557B20221024 was discovered to contain a command injection vulnerability via the admuser parameter in the setPasswordCfg function...
CVE-2023-37171
TOTOLINK A3300R V17.0.0cu.557B20221024 was discovered to contain a command injection vulnerability via the admuser parameter in the setPasswordCfg function...
TOTOLINK A3300R 操作系统命令注入漏洞
TOTOLINK A3300R is a dual-band wireless router manufactured by China's Gion Electronics TOTOLINK, mainly used for home and small network environments. A command injection vulnerability exists in the TOTOLINK A3300R. The vulnerability stems from the admuser parameter of the setPasswordCfg method...
CVE-2023-24160
TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the admuser parameter in the setPasswordCfg function...
Command injection
TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the admuser parameter in the setPasswordCfg function...
CVE-2023-24160
CVE-2023-24160 affects TOTOLINK CA300-PoE firmware v6.2c.884. A command injection vulnerability exists via the admuser parameter in the setPasswordCfg function. Documents cite a high-severity impact (CVSS v3.1: 9.8, NETWORK, no user interaction). Exploitation status is not provided in the primary...