| Title | TOTOLINK X2000R V1.0.0-B20230726.1108 Command Injection |
|---|
| Description | TOTOLINK X2000R_Firmware V1.0.0-B20230726.1108 was discovered to contain a remote code execution (RCE) vulnerability via the peerRptPin parameter in the /boafrm/formWsc. |
|---|
| Source | ⚠️ https://github.com/fizz-is-on-the-way/Iot_vuls/blob/main/X2000R/RCE_formWsc/RCE_formWsc.md |
|---|
| User | lcyf-fizz (UID 82520) |
|---|
| Submission | 05/26/2025 05:04 (11 months ago) |
|---|
| Moderation | 06/03/2025 07:43 (8 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 310918 [TOTOLINK X2000R 1.0.0-B20230726.1108 /boafrm/formWsc peerRptPin command injection] |
|---|
| Points | 16 |
|---|