Vulnerabilities

Report: CVE-2026-7204 - Totolink A8000RU CGI cstecgi.cgi setPptpServerCfg os command injection - Guide

2026-04-28 0 views admin

CVE ID :CVE-2026-7204 Published : April 28, 2026, 1:16 a.m. | 51 minutes ago Description :A vulnerability was determined in Totolink A8000RU 7.1cu.643_b20200521. This issue affects the function setPptpServerCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the argument enable causes os command injection. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized. Severity: 10.0 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-7204

Severity

HIGH

Published

April 28, 2026

Impact: command injection

🏷️ Tags

reporttotolinka8000rucstecgisetpptpservercfgcommandinjectionguidecvecve-2026-7204

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: CVE-2026-7204 - Totolink A8000RU CGI cstecgi.cgi setPptpServerCfg os command injection - Guide

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: CVE-2026-7196 - CodeAstro Online Classroom guestdetails sql injection

Report: Ultimate Guide: CVE-2026-7212 - edvardlindelof notes-mcp notes_mcp.py path traversal

Report: Essential Guide: CVE-2026-32649 - Milesight Cameras OS Command Injection

Report: CVE-2026-32644 - Milesight Cameras Use of Hard-coded Cryptographic Key

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting