6 matches found
PT-2026-34670
An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557 B20221024 allowing attackers to execute arbitrary commands via the password parameter to /cgi-bin/cstecgi.cgi...
CVE-2026-31167
An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557B20221024 allowing attackers to execute arbitrary commands via the mode parameter to /cgi-bin/cstecgi.cgi...
CVE-2023-37927
The improper neutralization of special elements in the CGI program of the Zyxel NAS326 firmware version V5.21AAZF.14C0 and NAS542 firmware version V5.21ABAG.11C0 could allow an authenticated attacker to execute some operating system OS commands by sending a crafted URL to a vulnerable device...
The vulnerability of the Common Gateway Interface (CGI) interface of microprogramming software for network devices such as ZyXEL USG, ZyWALL, USG FLEX, ATP, and VPN allows attackers to execute cross-site scripting attacks.
The vulnerability of the Common Gateway Interface CGI interface of microprogrammed network devices such as ZyXEL USG, ZyWALL, USG FLEX, ATP, and VPN is related to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-sit...
The vulnerability of the sapi/cgi/cgi_main.c component of the PHP programming language interpreter allows a attacker to cause a service failure.
The vulnerability of the sapi/cgi/cgimain.c component of the PHP programming language interpreter exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures remotely...
The vulnerability of the Common Gateway Interface (CGI) interface of microprogramming software for network devices such as ZyXEL USG, USG FLEX, ATP, ZyWALL, VPN, and NSG allows attackers to bypass authentication processes and gain increased privileges.
The vulnerability of the Common Gateway Interface CGI interface of ZyXEL USG, USG FLEX, ATP, ZyWALL, VPN, and NSG network devices is related to deficiencies in authentication procedures. Exploiting this vulnerability allows a malicious actor to bypass authentication processes and gain increased...