2 matches found
CVE-2024-32326
TOTOLINK EX200 V4.0.3c.7646B20201211 contains a Cross-site scripting XSS vulnerability through the key parameter in the setWiFiExtenderConfig function...
CVE-2025-2370
TOTOLINK EX1800T (up to 9.1.0cu.2112_B20220316 and earlier) is affected by CVE-2025-2370. The vulnerability is in the setWiFiExtenderConfig function in /cgi-bin/cstecgi.cgi, where manipulating the apcliSsid parameter triggers a stack-based buffer overflow. It can be exploited remotely and the exp...