CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

52 matches found

NVD•added 2026/04/27 12:16 p.m.•2 views

CVE-2026-7121

A flaw has been found in Totolink A8000RU 7.1cu.643b20200521. This affects the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the argument wizard causes os command injection. It is possible to initiate the attack remotely. The exploit has...

10CVSS0.01221EPSS

Exploits0References5

CVE•added 2026/04/27 11:45 a.m.•2 views

CVE-2026-7121

Totolink A8000RU 7.1cu.643_b20200521 has a vulnerability in the CGI Handler, specifically the setWizardCfg function in /cgi-bin/cstecgi.cgi. The wizard parameter manipulation leads to os command injection, with remote exploit possibility and an exploit published. The CVE indicates a critical seve...

10CVSS8.2AI score0.01221EPSS

Exploits0References5

Cvelist•added 2026/04/27 11:45 a.m.•23 views

CVE-2026-7121 Totolink A8000RU CGI cstecgi.cgi setWizardCfg os command injection

10CVSS0.01221EPSS

Exploits0References5

Vulnrichment•added 2026/04/27 11:45 a.m.•1 views

CVE-2026-7121 Totolink A8000RU CGI cstecgi.cgi setWizardCfg os command injection

10CVSS8.2AI score0.01221EPSS

Exploits0References5

Positive Technologies•added 2026/04/27 12:0 a.m.•2 views

PT-2026-35410

A flaw has been found in Totolink A8000RU 7.1cu.643 b20200521. This affects the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the argument wizard causes os command injection. It is possible to initiate the attack remotely. The exploit ha...

10CVSS8.2AI score0.01221EPSS

Exploits0References6

NVD•added 2026/04/13 4:16 a.m.•0 views

CVE-2026-6154

A security flaw has been discovered in Totolink A7100RU 7.4cu.2313b20191024. The affected element is the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument wizard results in os command injection. The attack may be initiat...

10CVSS0.01221EPSS

Exploits0References5

CVE•added 2026/04/13 3:0 a.m.•9 views

CVE-2026-6154

The CVE-2026-6154 entry concerns Totolink A7100RU (7.4cu.2313_b20191024) CGI Handler, specifically the function setWizardCfg in /cgi-bin/cstecgi.cgi. The vulnerability arises from input manipulation of the wizard argument that leads to an OS command injection. It is described as exploitable remot...

10CVSS7AI score0.01221EPSS

Exploits0References5

Vulnrichment•added 2026/04/13 3:0 a.m.•0 views

CVE-2026-6154 Totolink A7100RU CGI cstecgi.cgi setWizardCfg os command injection

10CVSS7AI score0.01221EPSS

Exploits0References5

ATTACKERKB•added 2026/04/13 3:0 a.m.•1 views

CVE-2026-6154

10CVSS7AI score0.01221EPSS

Exploits0References5Affected Software1

Cvelist•added 2026/04/13 3:0 a.m.•26 views

CVE-2026-6154 Totolink A7100RU CGI cstecgi.cgi setWizardCfg os command injection

10CVSS0.01221EPSS

Exploits0References5

RedhatCVE•added 2026/01/23 3:21 p.m.•3 views

CVE-2026-1328

A vulnerability was detected in Totolink NR1800X 9.1.0u.6279B20210910. Impacted is the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. Performing a manipulation of the argument ssid results in buffer overflow. The attack may be initiated remotely. The...

9CVSS8.6AI score0.00066EPSS

Exploits1References1

OSV•added 2026/01/22 3:16 p.m.•1 views

CVE-2026-1328

8.7CVSS6.3AI score0.00066EPSS

Exploits1References5

CVE•added 2026/01/22 2:32 p.m.•12 views

CVE-2026-1328

CVE-2026-1328 affects Totolink NR1800X (firmware 9.1.0u.6279_B20210910). The vulnerable component is the POST Request Handler function setWizardCfg in file /cgi-bin/cstecgi.cgi . A crafted manipulation of the argument ssid results in a buffer overflow , enabling remote execution. Public exploit e...

9CVSS6.1AI score0.00066EPSS

Exploits1References5Affected Software1

ATTACKERKB•added 2026/01/22 2:32 p.m.•1 views

CVE-2026-1328

9CVSS6AI score0.00066EPSS

Exploits1References5Affected Software1

Vulnrichment•added 2026/01/22 2:32 p.m.•2 views

CVE-2026-1328 Totolink NR1800X POST Request cstecgi.cgi setWizardCfg buffer overflow

9CVSS6.1AI score0.00066EPSS

Exploits1References5

Cvelist•added 2026/01/22 2:32 p.m.•14 views

CVE-2026-1328 Totolink NR1800X POST Request cstecgi.cgi setWizardCfg buffer overflow

9CVSS0.00066EPSS

Exploits1References5

Positive Technologies•added 2026/01/22 12:0 a.m.•4 views

PT-2026-3940

A vulnerability was detected in Totolink NR1800X 9.1.0u.6279 B20210910. Impacted is the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. Performing a manipulation of the argument ssid results in buffer overflow. The attack may be initiated remotely. Th...

9CVSS6.1AI score0.00066EPSS

Exploits1References6

Cvelist•added 2026/01/19 2:32 p.m.•16 views

CVE-2026-1158 Totolink LR350 POST Request cstecgi.cgi setWizardCfg buffer overflow

A security flaw has been discovered in Totolink LR350 9.3.5u.6369B20220309. This vulnerability affects the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. Performing a manipulation of the argument ssid results in buffer overflow. The attack can be...

9CVSS0.00211EPSS

Exploits1References5

CVE•added 2026/01/19 2:32 p.m.•10 views

CVE-2026-1158

Totolink LR350 9.3.5u.6369_B20220309 is affected by CVE-2026-1158 due to a buffer overflow in the POST Request Handler’s setWizardCfg function (file /cgi-bin/cstecgi.cgi) when manipulating the ssid argument. The vulnerability can be triggered remotely, and public exploits exist. APT-like exposure...

9CVSS6.1AI score0.00211EPSS

Exploits1References5Affected Software1

ATTACKERKB•added 2026/01/19 2:32 p.m.•2 views

CVE-2026-1158

9CVSS6.2AI score0.00211EPSS

Exploits1References5Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by