Количество 3
Количество 3
CVE-2026-1547
A vulnerability was detected in Totolink A7000R 4.1cu.4154. This affects the function setUnloadUserData of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument plugin_name results in command injection. It is possible to launch the attack remotely. The exploit is now public and may be used.
GHSA-26qr-hrpr-gcj8
A vulnerability was detected in Totolink A7000R 4.1cu.4154. This affects the function setUnloadUserData of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument plugin_name results in command injection. It is possible to launch the attack remotely. The exploit is now public and may be used.
BDU:2026-00935
Уязвимость функции setUnloadUserData() сценария /cgi-bin/cstecgi.cgi микропрограммного обеспечения роутеров TOTOLINK A7000R, позволяющая нарушителю выполнить произвольные команды
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2026-1547 A vulnerability was detected in Totolink A7000R 4.1cu.4154. This affects the function setUnloadUserData of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument plugin_name results in command injection. It is possible to launch the attack remotely. The exploit is now public and may be used. | CVSS3: 6.3 | 4% Низкий | 7 дней назад |
| GHSA-26qr-hrpr-gcj8 A vulnerability was detected in Totolink A7000R 4.1cu.4154. This affects the function setUnloadUserData of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument plugin_name results in command injection. It is possible to launch the attack remotely. The exploit is now public and may be used. | CVSS3: 6.3 | 4% Низкий | 7 дней назад |
 | BDU:2026-00935 Уязвимость функции setUnloadUserData() сценария /cgi-bin/cstecgi.cgi микропрограммного обеспечения роутеров TOTOLINK A7000R, позволяющая нарушителю выполнить произвольные команды | CVSS3: 6.3 | 4% Низкий | 21 день назад |
Уязвимостей на страницу