CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added 2026/04/28 7:30 a.m.•2 views

CVE-2026-7241

10CVSS5.2AI score0.01221EPSS

Exploits0References5Affected Software1

CVE•added 2026/04/28 7:30 a.m.•5 views

CVE-2026-7241

The CVE-2026-7241 issue affects Totolink A8000RU (firmware 7.1cu.643_b20200521) in the CGI Handler’s file /cgi-bin/cstecgi.cgi, specifically the setWiFiBasicCfg function. A manipulation of the wifiOff argument enables OS command injection, with remote feasibility and public-exploit availability. ...

10CVSS8.1AI score0.01221EPSS

EUVD•added 2026/04/28 7:30 a.m.•2 views

EUVD-2026-26014

10CVSS5.2AI score0.01221EPSS

Positive Technologies•added 2026/04/28 12:0 a.m.•1 views

PT-2026-35690

A vulnerability was found in Totolink A8000RU 7.1cu.643 b20200521. This issue affects the function setWiFiBasicCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument wifiOff results in os command injection. The attack is possible to be carried...

10CVSS8.1AI score0.01221EPSS

Exploits0References6

RedhatCVE•added 2026/04/14 7:22 p.m.•1 views

CVE-2026-5977

A weakness has been identified in Totolink A7100RU 7.4cu.2313b20191024. This impacts the function setWiFiBasicCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipulation of the argument wifiOff can lead to os command injection. It is possible to launch the attack...

NVD•added 2026/04/10 1:16 a.m.•0 views

Exploits0References1

CVE-2026-5993

A vulnerability was identified in Totolink A7100RU 7.4cu.2313b20191024. This vulnerability affects the function setWiFiGuestCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument wifiOff leads to os command injection. The attack can be executed...

CVE•added 2026/04/10 12:15 a.m.•7 views

CVE-2026-5993

Totolink A7100RU (firmware 7.4cu.2313_b20191024) is affected via CGI Handler’s /cgi-bin/cstecgi.cgi setWiFiGuestCfg function. Manipulating the wifiOff argument can trigger an os command injection, with remote execution possible and a publicly available exploit. The documents do not provide remedi...

Vulnrichment•added 2026/04/10 12:15 a.m.•0 views

CVE-2026-5993 Totolink A7100RU CGI cstecgi.cgi setWiFiGuestCfg os command injection

10CVSS7.1AI score0.01221EPSS

Cvelist•added 2026/04/10 12:15 a.m.•22 views

CVE-2026-5993 Totolink A7100RU CGI cstecgi.cgi setWiFiGuestCfg os command injection

EUVD•added 2026/04/10 12:15 a.m.•0 views

EUVD-2026-21268

ATTACKERKB•added 2026/04/10 12:15 a.m.•2 views

CVE-2026-5993

Exploits0References5Affected Software1

Positive Technologies•added 2026/04/10 12:0 a.m.•2 views

PT-2026-31833

Name of the Vulnerable Software and Affected Versions Totolink A7100RU version 7.4cu.2313 b20191024 Description A flaw exists in the CGI Handler component of the Totolink A7100RU. Specifically, the setWiFiGuestCfg function within the /cgi-bin/cstecgi.cgi file is susceptible to OS command injectio...

10CVSS7.4AI score0.01221EPSS

Exploits0References9

EUVD•added 2026/04/09 9:31 p.m.•0 views

EUVD-2026-21184

Vulnrichment•added 2026/04/09 8:15 p.m.•0 views

Exploits0References6

CVE-2026-5977 Totolink A7100RU CGI cstecgi.cgi setWiFiBasicCfg os command injection

CVE•added 2026/04/09 8:15 p.m.•3 views

CVE-2026-5977

Totolink A7100RU (firmware 7.4cu.2313_b20191024) has a vulnerability in CGI Handler: /cgi-bin/cstecgi.cgi, function setWiFiBasicCfg. Replacing/manipulating the wifiOff argument leads to OS command injection. Exploit is public, enabling remote, unauthenticated execution. CVSS metrics indicate CRIT...

ATTACKERKB•added 2026/04/09 8:15 p.m.•1 views

CVE-2026-5977

Exploits0References5Affected Software1

Cvelist•added 2026/04/09 8:15 p.m.•16 views

CVE-2026-5977 Totolink A7100RU CGI cstecgi.cgi setWiFiBasicCfg os command injection