2 matches found
CVE-2026-5678
CVE-2026-5678 affects Totolink A7100RU (firmware 7.4cu.2313_b20191024). The vulnerability is in the /cgi-bin/cstecgi.cgi function setScheduleCfg, where manipulating the mode argument enables an OS command injection. Exploitation can be performed remotely, and a public exploit is available. Impact...
PT-2026-25544
Name of the Vulnerable Software and Affected Versions Totolink A7100RU version 7.4cu.2313 b20191024 Description A weakness exists in the function setScheduleCfg of the file /cgi-bin/cstecgi.cgi. Manipulation of the mode argument can lead to operating system command injection. This attack can be...