| Título | TOTOLINK X5000R V9.1.0cu.2415_B20250515 Command Injection |
|---|
| Descrição | A vulnerability was determined in TOTOLINK X5000R V9.1.0cu.2415_B20250515. This impacts the function sub_410C34 of the file cstecgi.cgi. This manipulation of the argument pid causes command injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and may be utilized. |
|---|
| Fonte | ⚠️ https://github.com/Axelioc/CVE/blob/main/TOTOLINK/X5000R/sub_410C34/sub_410C34.md |
|---|
| Utilizador | Haaalion (UID 89556) |
|---|
| Submissão | 28/08/2025 10h14 (há 8 meses) |
|---|
| Moderação | 03/09/2025 13h33 (6 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 322336 [TOTOLINK X5000R 9.1.0cu.2415_B20250515 /cgi-bin/cstecgi.cgi sub_410C34 pid Elevação de Privilégios] |
|---|
| Pontos | 18 |
|---|