2 matches found
CVE-2023-33556
TOTOLink A7100RU V7.4cu.2313B20191024 was discovered to contain a command injection vulnerability via the staticGw parameter at /setting/setWanIeCfg...
CVE-2023-26978
CVE-2023-26978 affects TOTOLINK A7100RU (V7.4cu.2313_B20191024). The vulnerability is a command injection in the pppoeAcName parameter exposed via the /setting/setWanIeCfg endpoint. Root cause is improper handling/filtration of input leading to arbitrary command execution. Documents describe impa...