9 matches found
CVE-2026-9406
Totolink A8000RU Web Management (7.1cu.643_b20200521) is affected by CVE-2026-9406 due to a flaw in the setRemoteCfg function in /cgi-bin/cstecgi.cgi. Manipulation of the enable argument allows os command injection, with remote access. The CVE is supported by public exploit availability and PoC m...
CVE-2026-5690
A flaw has been found in Totolink A7100RU 7.4cu.2313b20191024. The impacted element is the function setRemoteCfg of the file /cgi-bin/cstecgi.cgi. Executing a manipulation of the argument enable can lead to os command injection. The attack can be executed remotely. The exploit has been published...
EUVD-2024-21752
Malicious code in bioql PyPI...
CVE-2024-24330
TOTOLINK A3300R V17.0.0cu.557B20221024 was discovered to contain a command injection vulnerability via the port or enable parameter in the setRemoteCfg function...
CVE-2024-24330
TOTOLINK A3300R V17.0.0cu.557B20221024 was discovered to contain a command injection vulnerability via the port or enable parameter in the setRemoteCfg function...
Command injection
TOTOLINK A3300R V17.0.0cu.557B20221024 was discovered to contain a command injection vulnerability via the port or enable parameter in the setRemoteCfg function...
CVE-2024-24330
TOTOLINK A3300R V17.0.0cu.557B20221024 was discovered to contain a command injection vulnerability via the port or enable parameter in the setRemoteCfg function...
CVE-2024-24330
TOTOLINK A3300R V17.0.0cu.557B20221024 was discovered to contain a command injection vulnerability via the port or enable parameter in the setRemoteCfg function...
PT-2024-20363 · Totolink · Totolink A3300R
Name of the Vulnerable Software and Affected Versions: TOTOLINK A3300R version 17.0.0cu.557 B20221024 Description: The issue is related to a command injection vulnerability. This vulnerability can be exploited via the port or enable parameters in the setRemoteCfg function. Recommendations: For...