6 matches found
CVE-2025-28037
TOTOLINK A810R V4.1.2cu.5182B20201026 and A950RG V4.1.2cu.5161B20200903 were found to contain a pre-auth remote command execution vulnerability in the setDiagnosisCfg function through the ipDomain parameter...
CVE-2025-28037
TOTOLINK A810R V4.1.2cu.5182B20201026 and A950RG V4.1.2cu.5161B20200903 were found to contain a pre-auth remote command execution vulnerability in the setDiagnosisCfg function through the ipDomain parameter...
TOTOLINK A3600R 操作系统命令注入漏洞
TOTOLINK A3600R is a 6-antenna 1200M wireless router manufactured by China's Gion Electronics TOTOLINK. The TOTOLINK A3600R suffers from an OS command injection vulnerability. The vulnerability originates in the /cgi-bin/cstecgi.cgi file stemming from improper handling of the ipDomain parameter. ...
TOTOLINK N600R Command Injection Vulnerability (CNVD-2022-53554)
TOTOLINK N600R is a wireless router from Taiwan-based Gion Electronics TOTOLINK, China.A command injection vulnerability exists in TOTOLINK N600R, which can be exploited by attackers to conduct command injection attacks via the ipdoamin parameter in /setting/setDiagnosisCfg...
CVE-2022-28908
TOTOLink N600R V5.3c.7159B20190425 was discovered to contain a command injection vulnerability via the ipdoamin parameter in /setting/setDiagnosisCfg...
CVE-2022-28908
CVE-2022-28908 affects TOTOLink N600R router (firmware version V5.3c.7159_B20190425). A command injection vulnerability exists via the ipdoamin parameter in the /setting/setDiagnosisCfg endpoint, enabling remote code execution as described in multiple sources. The initial documents do not provide...