Lucene search
+L

13 matches found

cvelist
cvelist
added 2026/04/12 10:30 p.m.32 views

CVE-2026-6132 Totolink A7100RU CGI cstecgi.cgi setLedCfg os command injection

A vulnerability was determined in Totolink A7100RU 7.4cu.2313b20191024. Affected by this issue is the function setLedCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the argument enable causes os command injection. Remote exploitation of the attack is...

10CVSS0.02175EPSS
Exploits0References5
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-51137

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.01515EPSS
Exploits1References1
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-50698

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.0123EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/23 4:4 a.m.7 views

CVE-2023-46979

TOTOLINK X6000R V9.4.0cu.852B20230719 was discovered to contain a command injection vulnerability via the enable parameter in the setLedCfg function...

9.8CVSS7.9AI score0.01515EPSS
Exploits1
cnvd
cnvd
added 2024/08/21 12:0 a.m.9 views

TOTOLINK X5000R setLedCfg Function OS Command Injection Vulnerability

The TOTOLINK X5000R is a router from China's Gion Electronics TOTOLINK. An operating system command injection vulnerability exists in TOTOLINK X5000R version v9.1.0cu.2350b20230313. The vulnerability stems from the setLedCfg function in the file /cgi-bin/cstecgi.cgi that fails to properly filter...

6.8CVSS7.8AI score0.0276EPSS
Exploits1References1
cnvd
cnvd
added 2023/11/02 12:0 a.m.1 views

TOTOLINK X6000R setLedCfg Function Code Execution Vulnerability

TOTOLINK X6000R is a wireless router from China Gion Electronics that supports WiFi 6 technology with high concurrent connections and dual-band transmission. A code execution vulnerability exists in TOTOLINK X6000R. The vulnerability stems from the application failing to properly filter special...

9.8CVSS8.1AI score0.0123EPSS
Exploits1References1
nvd
nvd
added 2023/10/31 2:15 p.m.21 views

CVE-2023-46979

TOTOLINK X6000R V9.4.0cu.852B20230719 was discovered to contain a command injection vulnerability via the enable parameter in the setLedCfg function...

9.8CVSS9.8AI score0.01515EPSS
Exploits1References1
prion
prion
added 2023/10/31 2:15 p.m.26 views

Command injection

TOTOLINK X6000R V9.4.0cu.852B20230719 was discovered to contain a command injection vulnerability via the enable parameter in the setLedCfg function...

7.5CVSS9.7AI score0.01515EPSS
Exploits1References1Affected Software1
vulnrichment
vulnrichment
added 2023/10/31 12:0 a.m.15 views

CVE-2023-46484

An issue in TOTOlink X6000R V9.4.0cu.852B20230719 allows a remote attacker to execute arbitrary code via the setLedCfg function...

8.1AI score0.0123EPSS
Exploits1References1
ptsecurity
ptsecurity
added 2023/10/31 12:0 a.m.3 views

PT-2023-30047 · Totolink · Totolink X6000R

Name of the Vulnerable Software and Affected Versions: TOTOlink X6000R version 9.4.0cu.852 B20230719 Description: An issue in the software allows a remote attacker to execute arbitrary code via the setLedCfg function. This enables the attacker to potentially gain control over the device. The...

9.8CVSS8.3AI score0.0123EPSS
Exploits1References7
ptsecurity
ptsecurity
added 2023/10/31 12:0 a.m.5 views

PT-2023-30280 · Totolink · Totolink X6000R

Name of the Vulnerable Software and Affected Versions: TOTOLINK X6000R version 9.4.0cu.852 B20230719 Description: A command injection issue was found via the enable parameter in the setLedCfg function. This allows for potential command injection attacks. Recommendations: For TOTOLINK X6000R versi...

9.8CVSS7.8AI score0.01515EPSS
Exploits1References4
cvelist
cvelist
added 2023/10/31 12:0 a.m.24 views

CVE-2023-46484

An issue in TOTOlink X6000R V9.4.0cu.852B20230719 allows a remote attacker to execute arbitrary code via the setLedCfg function...

9.8AI score0.0123EPSS
Exploits1References1
cvelist
cvelist
added 2023/10/31 12:0 a.m.28 views

CVE-2023-46979

TOTOLINK X6000R V9.4.0cu.852B20230719 was discovered to contain a command injection vulnerability via the enable parameter in the setLedCfg function...

10AI score0.01515EPSS
Exploits1References1
Rows per page
Query Builder