CVE-2023-24145
Vulnerability: TOTOLINK CA300-PoE firmware v6.2c.884 exposes a command‑injection flaw in setUnloadUserData via the plugin_version parameter. Impact: remote code execution over the network with high severity (CVSS 3.1: 9.8, AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). Root cause: improper handling of plu...