Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2026/05/25 12:30 p.m.7 views

EUVD-2026-31678

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. The impacted element is the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument enabled leads to os command injection. The attack may be performed fr...

10CVSS7.1AI score0.01254EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/05/25 12:0 p.m.8 views

CVE-2026-9456

A vulnerability was found in Totolink A8000RU 7.1cu.643b20200521. Impacted is the function setOpenVpnCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument enabled results in os command injection. The attack can be executed remotely. The...

10CVSS7AI score0.01254EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologiesadded 2026/05/25 12:0 a.m.9 views

PT-2026-43158

A vulnerability was detected in Totolink CA750-PoE 6.2c.510. The affected element is the function setUnloadUserData of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. The manipulation of the argument plugin version results in os command injection. The attack may be launched...

6.5CVSS6.4AI score0.04841EPSS
Exploits0References6
CVE
CVEadded 2026/04/27 4:0 p.m.9 views

CVE-2026-7138

Totolink A8000RU vulnerability CVE-2026-7138 affects the CGI Handler: file /cgi-bin/cstecgi.cgi, function setNtpCfg. Manipulating the tz argument leads to OS command injection with a remote attack path. Public exploit is indicated in the sources. No specific patch/version details or mitigations a...

10CVSS8.3AI score0.01221EPSS
Exploits0References5
EUVD
EUVDadded 2026/04/23 6:33 p.m.4 views

EUVD-2026-25239

An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557B20221024 allowing attackers to execute arbitrary commands via the password parameter to /cgi-bin/cstecgi.cgi...

6.5CVSS6.1AI score0.00388EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2024/07/30 12:0 a.m.2 views

PT-2024-38173 · Totolink · Totolink A7000R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A7000R version 9.1.0u.6268 B20220504 Description: A critical issue was found in the setWizardCfg function of the /cgi-bin/cstecgi.cgi file. The manipulation of the ssid argument leads to buffer overflow. It is possible to launch the...

9CVSS8.8AI score0.00717EPSS
Exploits1References7
CNNVD
CNNVDadded 2024/07/29 12:0 a.m.2 views

TOTOLINK A3600R 安全漏洞

TOTOLINK A3600R is a 6-antenna 1200M wireless router from China's Gion Electronics TOTOLINK. A buffer overflow vulnerability exists in the TOTOLINK A3600R version 4.1.2cu.5182B20201102, which originates from the priority/macAddress parameter in the setMacQos function of the /cgi-bin/cstecgi.cgi...

9CVSS8AI score0.00296EPSS
Exploits1References5
Rows per page
Query Builder