Vulnerabilities

Report: CVE-2026-7202 - Totolink A8000RU CGI cstecgi.cgi setWiFiWpsStart os command injection - Complete Guide

2026-04-28 0 views admin

CVE ID :CVE-2026-7202 Published : April 28, 2026, 1:16 a.m. | 51 minutes ago Description :A vulnerability has been found in Totolink A8000RU 7.1cu.643_b20200521. This affects the function setWiFiWpsStart of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument wscDisabled leads to os command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Severity: 10.0 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-7202

Severity

HIGH

Published

April 28, 2026

Impact: command injection

🏷️ Tags

reporttotolinka8000rucstecgisetwifiwpsstartcommandinjectioncompleteguidecve

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: CVE-2026-7202 - Totolink A8000RU CGI cstecgi.cgi setWiFiWpsStart os command injection - Complete Guide

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: CVE-2026-7196 - CodeAstro Online Classroom guestdetails sql injection

Report: Ultimate Guide: CVE-2026-7212 - edvardlindelof notes-mcp notes_mcp.py path traversal

Report: Essential Guide: CVE-2026-32649 - Milesight Cameras OS Command Injection

Report: CVE-2026-32644 - Milesight Cameras Use of Hard-coded Cryptographic Key

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting