CVE-2026-7720 | Totolink WA300 5.2cu.7112_B20190227 POST Request /cgi-bin/cstecgi.cgi setLanguageCfg langType command injection

A vulnerability has been found in Totolink WA300 5.2cu.7112_B20190227 and classified as critical. The impacted element is the function setLanguageCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. This manipulation of the argument langType causes command injection.

This vulnerability is registered as CVE-2026-7720. Remote exploitation of the attack is possible. Furthermore, an exploit is available.VulDB Recent EntriesRead More