3 matches found
CVE-2026-6168
A flaw has been found in TOTOLINK A7000R up to 9.1.0u.6115. The affected element is the function setWiFiEasyGuestCfg of the file /cgi-bin/cstecgi.cgi. This manipulation of the argument ssid5g causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been...
CVE-2026-5993
Totolink A7100RU (firmware 7.4cu.2313_b20191024) is affected via CGI Handler’s /cgi-bin/cstecgi.cgi setWiFiGuestCfg function. Manipulating the wifiOff argument can trigger an os command injection, with remote execution possible and a publicly available exploit. The documents do not provide remedi...
CVE-2026-4976
A vulnerability was found in Totolink LR350 9.3.5u.6369B20220309. This vulnerability affects the function setWiFiGuestCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument ssid results in buffer overflow. The attack can be launched remotely. The exploit has been made public and...