Submit #260959: TOTOLINK N200RE V5 V9.3.5u.6139_B20201216 command injectioninfo

TitleTOTOLINK N200RE V5 V9.3.5u.6139_B20201216 command injection
DescriptionTOTOLINK N200RE V5 V9.3.5u.6139_B20201216 was discovered to contain a command injection vulnerability via the FileName parameter in the function UploadFirmwareFile .
Source⚠️ https://github.com/jylsec/vuldb/blob/main/TOTOLINK/N200RE/UploadFirmwareFile/README.md
User
 jylsec (UID 60282)
Submission01/01/2024 10:34 (2 years ago)
Moderation01/07/2024 10:15 (6 days later)
StatusAccepted
VulDB entry249863 [Totolink N200RE 9.3.5u.6139_B20201216 /cgi-bin/cstecgi.cgi UploadFirmwareFile FileName os command injection]
Points16

PreviousOverviewNext

Interested in the pricing of exploits?

See the underground prices here!