Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:48 p.m.11 views

CVE-2026-9512

A security flaw has been discovered in Totolink CA750-PoE 6.2c.510. This vulnerability affects the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Performing a manipulation of the argument admuser/admpass results in os command injection. The attack can b...

6.5CVSS6.3AI score0.01057EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/13 6:30 p.m.7 views

EUVD-2026-22036

A security vulnerability has been detected in Totolink A7100RU 7.4cu.2313b20191024. Affected by this issue is the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument admpass leads to os command injection. The attack can be...

10CVSS5.6AI score0.14277EPSS
Exploits0References6
OSV
OSV
added 2023/03/23 5:15 p.m.4 views

CVE-2022-28496

TOTOLink outdoor CPE CP900 V6.3c.566B20171026 discovered to contain a command injection vulnerability in the setPasswordCfg function via the adminuser and adminpassparameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...

9.8CVSS6AI score0.01409EPSS
Exploits0References1
OSV
OSV
added 2023/02/14 3:15 p.m.5 views

CVE-2023-24160

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the admuser parameter in the setPasswordCfg function...

9.8CVSS7.3AI score0.0192EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/02/14 12:0 a.m.5 views

TOTOLINK CA300-PoE 命令注入漏洞

The TOTOLINK CA300-PoE is a wireless access point from China Gion Electronics TOTOLINK. A security vulnerability exists in TOTOLINK CA300-PoE version V6.2c.884, which was discovered to contain a command injection vulnerability via the admpass parameter in the setPasswordCfg function...

9.8CVSS8.4AI score0.0192EPSS
Exploits1References3
Rows per page
Query Builder