CVE-2026-7720 in WA300المعلومات

الملخص

بحسب MITRE • 04/05/2026

A weakness has been identified in Totolink WA300 5.2cu.7112_B20190227. The impacted element is the function setLanguageCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. This manipulation of the argument langType causes command injection. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be used for attacks.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

VulDB

إفشاء

04/05/2026

الاعتدال

تمت الموافقة

إدخال

VDB-360896

CPE

جاهز

CWE

CWE-77 (مؤكد)

استغلال

تحميل

CVSS

6.3 (VulDB)

EPSS

0.04841

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-7720
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-7720
CVE Details	https://www.cvedetails.com/cve/CVE-2026-7720/

التالي ▸نظرة عامة ◂ السابق

Interested in the pricing of exploits?

See the underground prices here!