4 matches found
CVE-2025-4850
A vulnerability classified as critical has been found in TOTOLINK N300RH 6.1c.1390B20191101. This affects the function setUnloadUserData of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument pluginname leads to command injection. It is possible to initiate the attack remotely. The...
CVE-2025-4850
A vulnerability classified as critical has been found in TOTOLINK N300RH 6.1c.1390B20191101. This affects the function setUnloadUserData of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument pluginname leads to command injection. It is possible to initiate the attack remotely. The...
CVE-2025-4850 TOTOLINK N300RH cstecgi.cgi setUnloadUserData command injection
A vulnerability classified as critical has been found in TOTOLINK N300RH 6.1c.1390B20191101. This affects the function setUnloadUserData of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument pluginname leads to command injection. It is possible to initiate the attack remotely. The...
CVE-2025-4850
CVE-2025-4850 affects TOTOLINK N300RH (6.1c.1390_B20191101). The issue lies in the function setUnloadUserData in the file /cgi-bin/cstecgi.cgi, where manipulating the argument plugin_name enables a remote command injection . Multiple sources confirm a critical vulnerability with public exploit di...