CVE-2026-7152

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. The affected element is the function setTelnetCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument telnetenabled leads to os command injection. It is possible to launch the attac...

CVE-2026-5994 Totolink A7100RU CGI cstecgi.cgi setTelnetCfg os command injection

A security flaw has been discovered in Totolink A7100RU 7.4cu.2313b20191024. This issue affects the function setTelnetCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument telnetenabled results in os command injection. The attack is possible ...

CVE-2026-5994

CVE-2026-5994 affects Totolink A7100RU (7.4cu.2313_b20191024) in the CGI Handler: /cgi-bin/cstecgi.cgi, via manipulating the argument telnet_enabled in function setTelnetCfg to trigger an OS command injection. The vulnerability is exploitable remotely without authentication, and the exploit has b...

EUVD-2023-56705

Malicious code in bioql PyPI...

TOTOLINK CP900 命令注入漏洞

The TOTOLINK CP900 is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK CP900 suffers from a command injection vulnerability that originates in the setTelnetCfg function of the component Telnet service, where manipulation of the parameter telnetenabled can lead to command...

Unspecified Vulnerability in TOTOLINK EX200

TOTOLINK EX200 is a wireless N range extender from China Gion Electronics TOTOLINK , which is mainly used to extend the coverage of the existing Wi-Fi network and solve the problem of signal blind zones. A security vulnerability exists in the TOTOLINK EX200, which stems from improper privilege...

CVE-2023-52026

TOTOlink EX1800T V9.1.0cu.2112B20220316 was discovered to contain a remote command execution RCE vulnerability via the telnetenabled parameter of the setTelnetCfg interface...