CVE-2026-9408

A vulnerability was detected in Totolink A8000RU 7.1cu.643b20200521. Affected by this issue is the function setStaticDhcpRules of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument enable results in os command injection. The attack may be...

CVE-2026-9408 Totolink A8000RU Web Management cstecgi.cgi setStaticDhcpRules os command injection

A vulnerability was detected in Totolink A8000RU 7.1cu.643b20200521. Affected by this issue is the function setStaticDhcpRules of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument enable results in os command injection. The attack may be...

CVE-2023-26848

TOTOlink A7100RUV7.4cu.2313B20191024 was discovered to contain a command injection vulnerability via the org parameter at setting/delStaticDhcpRules...

CVE-2022-48122

TOTOlink A7100RU V7.4cu.2313B20191024 was discovered to contain a command injection vulnerability via the dayvalid parameter in the setting/delStaticDhcpRules function...

PT-2024-1545 · Totolink · Totolink A3300R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3300R version V17.0.0cu.557 B20221024 Description: The issue exists due to the lack of measures to neutralize special elements in the setStaticDhcpRules function of the TOTOLINK A3300R router's firmware. This allows a remote attacke...

CVE-2023-26848

TOTOlink A7100RUV7.4cu.2313B20191024 was discovered to contain a command injection vulnerability via the org parameter at setting/delStaticDhcpRules...

CVE-2023-25395

TOTOlink A7100RU V7.4cu.2313B20191024 router was discovered to contain a command injection vulnerability via the ou parameter at /setting/delStaticDhcpRules...

PT-2023-20045 · Totolink · Totolink A7100Ru

Name of the Vulnerable Software and Affected Versions: TOTOlink A7100RU version 7.4cu.2313 B20191024 Description: A command injection issue was discovered in the router, specifically via the ou parameter at the "/setting/delStaticDhcpRules" API endpoint. This allows for potential exploitation...

TOTOLINK A7100RU 命令注入漏洞

The TOTOLINK A7100RU is a wireless router from China's Gion Electronics TOTOLINK. A security vulnerability exists in the TOTOLINK A7100RU V7.4cu.2313B20191024 version, which was discovered to contain a command injection vulnerability via the country parameter of setting/delStaticDhcpRules...

TOTOLINK A7100RU 操作系统命令注入漏洞

The TOTOLINK A7100RU is a wireless router from China's Gion Electronics TOTOLINK. An operating system command injection vulnerability exists in the TOTOLINK A7100RU V7.4cu.2313B20191024 version, which stems from the dayvalid parameter of the set/delStaticDhcpRules method containing a command...

CVE-2022-48123

TOTOlink A7100RU V7.4cu.2313B20191024 was discovered to contain a command injection vulnerability via the servername parameter in the setting/delStaticDhcpRules function...