CVE-2025-9533

A vulnerability has been found in TOTOLINK T10 4.1.8cu.5241B20210927. Affected is an unknown function of the file /formLoginAuth.htm. The manipulation of the argument authCode with the input 1 leads to improper authentication. The attack can be initiated remotely. The exploit has been disclosed t...

CVE-2025-9533

TOTOLINK T10 v4.1.8cu.5241_B20210927 contains an improper authentication vulnerability in the /formLoginAuth.htm file. The issue arises from manipulating the authCode parameter (e.g., input 1) to bypass authentication. The vulnerability is exploitable remotely and has public disclosure. Connected...

TOTOLINK T10 安全漏洞

TOTOLINK T10 is a wireless network system router from China's Gion Electronics TOTOLINK. A security vulnerability exists in TOTOLINK T10 version 4.1.8cu.5241B20210927, which stems from improper authentication due to incorrect operation of the parameter authCode in the file /formLoginAuth.htm...

CVE-2025-51452

In TOTOLINK A7000R firmware 9.1.0u.6115B20201022, an attacker can bypass login by sending a specific request through formLoginAuth.htm...

PT-2025-33016 · Totolink · Totolink A7000R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A7000R firmware version 9.1.0u.6115 B20201022 Description: An attacker can bypass login by sending a specific request through the formLoginAuth.htm endpoint. Recommendations: Apply a configuration change to restrict access to the...

CVE-2024-10654

A vulnerability has been found in TOTOLINK LR350 up to 9.3.5u.6369 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /formLoginAuth.htm. The manipulation of the argument authCode with the input 1 leads to authorization bypass. The attack can be...