TOTOLINK A3002RU System Command Injection Vulnerability (CNVD-2018-26674)
TOTOLINK A3002RU is a wireless router product from Gion Electronics TOTOLINK. A command injection vulnerability exists in formDlna in TOTOLINK A3002RU version 1.0.8. An attacker can exploit this vulnerability to execute system commands with the help of the 'ftpUser' POST parameter...