CVE-2018-18728
An issue was discovered on Tenda AC9 V15.03.05.196318CN, AC15 V15.03.05.19CN, and AC18 V15.03.05.196318CN devices. They allow remote code execution via shell metacharacters in the usbName field to the fastcall function with a POST request...