Submit #584653: TOTOLINK X2000R V1.0.0-B20230726.1108 Command Injectioninfo

TitleTOTOLINK X2000R V1.0.0-B20230726.1108 Command Injection
DescriptionTOTOLINK X2000R_Firmware V1.0.0-B20230726.1108 was discovered to contain a remote code execution (RCE) vulnerability via the devicemac1 parameter in the /boafrm/formMapDel.
Source⚠️ https://github.com/fizz-is-on-the-way/Iot_vuls/blob/main/X2000R/RCE_formMapDel/RCE_formMapDel.md
User
 lcyf-fizz (UID 82520)
Submission05/26/2025 05:02 (1 Year ago)
Moderation06/03/2025 10:17 (8 days later)
StatusAccepted
VulDB entry310952 [TOTOLINK X2000R 1.0.0-B20230726.1108 /boafrm/formMapDel devicemac1 command injection]
Points16

Interested in the pricing of exploits?

See the underground prices here!