3 matches found
PT-2026-31887
Name of the Vulnerable Software and Affected Versions Totolink A7100RU version 7.4cu.2313 b20191024 Description A vulnerability exists in the Totolink A7100RU router. The setVpnAccountCfg function within the /cgi-bin/cstecgi.cgi file of the CGI Handler component is susceptible to OS command...
EUVD-2024-53490
Malicious code in bioql PyPI...
CVE-2024-57016
CVE-2024-57016 affects TOTOLINK X5000R, specifically the function setVpnAccountCfg; the vulnerability arises from the user parameter not being properly sanitized in the /web/cgi-bin/cstecgi.cgi endpoint, enabling an OS command injection. Reported details from PT-2025-3382 describe that this could...