Submit #792650: Totolink A3300R V17.0.0cu.557_B20221024 OS Command Injection [Accepted]
Submit #792650 / VDB-355506
Aggregator
CVE-2026-5677 | Totolink A7100RU 7.4cu.2313_b20191024 /cgi-bin/cstecgi.cgi CsteSystem resetFlags os command injection
1 week ago
A vulnerability, which was classified as critical, has been found in Totolink A7100RU 7.4cu.2313_b20191024. Impacted is the function CsteSystem of the file /cgi-bin/cstecgi.cgi. Performing a manipulation of the argument resetFlags results in os command injection.
This vulnerability was named CVE-2026-5677. The attack may be initiated remotely. In addition, an exploit is available.
vuldb.com
Submit #792648: Totolink A3300R V17.0.0cu.557_B20221024 OS Command Injection [Duplicate]
1 week ago
Submit #792648 / VDB-250461
m202572177
Submit #792647: Totolink A3300R V17.0.0cu.557_B20221024 OS Command Injection [Duplicate]
1 week ago
Submit #792647 / VDB-250461
Manner814
Submit #792646: Totolink A3300R V17.0.0cu.557_B20221024 OS Command Injection [Duplicate]
1 week ago
Submit #792646 / VDB-250461
Manner814
Submit #792645: Totolink A3300R V17.0.0cu.557_B20221024 OS Command Injection [Duplicate]
1 week ago
Submit #792645 / VDB-250463
aimless
Submit #792641: Totolink A3300R V17.0.0cu.557_B20221024 OS Command Injection [Duplicate]
1 week ago
Submit #792641 / VDB-250462
aimless
Submit #792640: Totolink A3300R V17.0.0cu.557_B20221024 OS Command Injection [Duplicate]
1 week ago
Submit #792640 / VDB-252400
Svigo_o
Submit #792639: Totolink A3300R V17.0.0cu.557_B20221024 OS Command Injection [Duplicate]
1 week ago
Submit #792639 / VDB-252400
Svigo_o
Submit #792638: Totolink A3300R V17.0.0cu.557_B20221024 OS Command Injection [Duplicate]
1 week ago
Submit #792638 / VDB-250462
Svigo_o
Submit #792637: Totolink A3300R V17.0.0cu.557_B20221024 OS Command Injection [Duplicate]
1 week ago
Submit #792637 / VDB-250463
Svigo_o
CVE-2026-5676 | Totolink A8000R 5.9c.681_B20180413 /cgi-bin/cstecgi.cgi setLanguageCfg langType missing authentication
1 week ago
A vulnerability classified as critical was found in Totolink A8000R 5.9c.681_B20180413. This issue affects the function setLanguageCfg of the file /cgi-bin/cstecgi.cgi. Such manipulation of the argument langType leads to missing authentication.
This vulnerability is uniquely identified as CVE-2026-5676. The attack can be launched remotely. Moreover, an exploit is present.
Restrictive firewalling should be applied.
vuldb.com
Submit #792636: Totolink A3300R V17.0.0cu.557_B20221024 OS Command Injection [Duplicate]
1 week ago
Submit #792636 / VDB-250459
Svigo_o
Submit #792635: Totolink A3300R V17.0.0cu.557_B20221024 OS Command Injection [Duplicate]
1 week ago
Submit #792635 / VDB-250461
Svigo_o
Submit #792634: Totolink A3300R V17.0.0cu.557_B20221024 OS Command Injection [Duplicate]
1 week ago
Submit #792634 / VDB-250461
Svigo_o
Submit #792633: Totolink A3300R V17.0.0cu.557_B20221024 OS Command Injection [Duplicate]
1 week ago
Submit #792633 / VDB-250463
Svigo_o
Submit #792632: Totolink A3300R V17.0.0cu.557_B20221024 OS Command Injection [Duplicate]
1 week ago
Submit #792632 / VDB-250461
Svigo_o
Submit #792631: Totolink A3300R V17.0.0cu.557_B20221024 OS Command Injection [Duplicate]
1 week ago
Submit #792631 / VDB-250459
Svigo_o
Submit #792608: Totolink A7100RU 7.4cu.2313_b20191024 Command Injection [Accepted]
1 week ago
Submit #792608 / VDB-355505
LtzHuster2
Submit #792606: Totolink A7100RU 7.4cu.2313_b20191024 Command Injection [Accepted]
1 week ago
Submit #792606 / VDB-355504
LtzHuster2