CVE-2026-7718 | Totolink WA300 5.2cu.7112_B20190227 POST Request /cgi-bin/cstecgi.cgi setWebWlanIdx webWlanIdx command injection

A vulnerability, which was classified as critical, has been found in Totolink WA300 5.2cu.7112_B20190227. Impacted is the function setWebWlanIdx of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument webWlanIdx leads to command injection.

This vulnerability is listed as CVE-2026-7718. The attack may be initiated remotely. In addition, an exploit is available.VulDB Recent EntriesRead More