Posted by Angelo Barbosa | Jan 15, 2025 | CVE
A vulnerability has been found in TOTOLINK X5000R 9.1.0cu.2350_B20230313 and classified as critical. This vulnerability affects the function setVpnAccountCfg. The manipulation of the argument pass leads to os command injection. This vulnerability was named CVE-2024-57017. The attack can be initiated remotely. There is no exploit...
Read MorePosted by Angelo Barbosa | Jan 15, 2025 | CVE
A vulnerability, which was classified as problematic, was found in Mighty Digital Partners Plugin up to 0.2.0 on WordPress. This affects an unknown part. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-22751. It is possible to initiate the attack remotely. There is no exploit...
Read MorePosted by Angelo Barbosa | Jan 15, 2025 | CVE
A vulnerability, which was classified as critical, has been found in TOTOLINK X5000R 9.1.0cu.2350_B20230313. Affected by this issue is the function setVpnAccountCfg. The manipulation of the argument desc leads to os command injection. This vulnerability is handled as CVE-2024-57018. The attack may be launched remotely. There is no exploit...
Read MorePosted by Angelo Barbosa | Jan 15, 2025 | CVE
A vulnerability classified as critical was found in TOTOLINK X5000R 9.1.0cu.2350_B20230313. Affected by this vulnerability is the function setWiFiScheduleCfg. The manipulation of the argument eHour leads to os command injection. This vulnerability is known as CVE-2024-57021. The attack can be launched remotely. There is no exploit...
Read MorePosted by Angelo Barbosa | Jan 15, 2025 | CVE
A vulnerability classified as critical has been found in TOTOLINK X5000R 9.1.0cu.2350_B20230313. Affected is the function setVpnAccountCfg. The manipulation of the argument limit leads to os command injection. This vulnerability is traded as CVE-2024-57019. It is possible to launch the attack remotely. There is no exploit...
Read More