Lucene search
K

9 matches found

CNVD
CNVD
added 2025/11/18 12:0 a.m.2 views

TOTOLINK A720R Command Injection Vulnerability (CNVD-2025-29710)

TOTOLINK A720R is a wireless router from China's Gion Electronics TOTOLINK with dual-band Wi-Fi capabilities, focusing on high-speed internet and signal coverage. The TOTOLINK A720R suffers from a command injection vulnerability that stems from the unvalidated magicid and url parameters in the...

6.5CVSS7.8AI score0.01612EPSS
Exploits1References1
NVD
NVD
added 2025/11/13 4:15 p.m.5 views

CVE-2025-60682

A command injection vulnerability exists in the ToToLink A720R Router firmware V4.1.5cu.614B20230630 within the cloudupdatecheck binary, specifically in the sub402414 function that handles cloud update parameters. User-supplied 'magicid' and 'url' values are directly concatenated into shell...

6.5CVSS0.01612EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/11/13 12:0 a.m.3 views

TOTOLINK A720R 安全漏洞

TOTOLINK A720R is a wireless router from China's Gion Electronics TOTOLINK with dual-band Wi-Fi capabilities, focusing on high-speed internet and signal coverage. The TOTOLINK A720R suffers from a command injection vulnerability that stems from the unvalidated magicid and url parameters in the...

6.5CVSS7.4AI score0.01612EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2021-30575

Malicious code in bioql PyPI...

7.9CVSS7.6AI score0.00967EPSS
Exploits1References1
NVD
NVD
added 2022/03/31 12:15 a.m.20 views

CVE-2021-43663

totolink EX300v2 V4.0.3c.140B20210429 was discovered to contain a command injection vulnerability via the component cloudupdatecheck...

7.9CVSS0.00967EPSS
Exploits1References1
OSV
OSV
added 2022/03/31 12:15 a.m.3 views

CVE-2021-43663

totolink EX300v2 V4.0.3c.140B20210429 was discovered to contain a command injection vulnerability via the component cloudupdatecheck...

7.5CVSS5.8AI score
Exploits0References1
Prion
Prion
added 2022/03/31 12:15 a.m.20 views

Command injection

totolink EX300v2 V4.0.3c.140B20210429 was discovered to contain a command injection vulnerability via the component cloudupdatecheck...

7.9CVSS7.8AI score0.00967EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/03/30 11:40 p.m.18 views

CVE-2021-43663

totolink EX300v2 V4.0.3c.140B20210429 was discovered to contain a command injection vulnerability via the component cloudupdatecheck...

8AI score0.00967EPSS
Exploits1References1
CVE
CVE
added 2022/03/30 11:40 p.m.91 views

CVE-2021-43663

The CVE-2021-43663 entry concerns TotoLink EX300_v2, version 4.0.3c.140_B20210429, with a command-injection flaw in the cloudupdate_check component. Public CNVD/CNNVD entries describe an unauthenticated remote code-execution risk that can be exploited via a MITM attack, potentially allowing the a...

7.9CVSS7.7AI score0.00967EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder