CVE-2026-9511 | Totolink CA750-PoE 6.2c.510 Setting /cgi-bin/cstecgi.cgi setWebWlanIdx webWlanIdx os command injection

A vulnerability described as critical has been identified in Totolink CA750-PoE 6.2c.510. This affects the function setWebWlanIdx of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Such manipulation of the argument webWlanIdx leads to os command injection.

This vulnerability is referenced as CVE-2026-9511. It is possible to launch the attack remotely. Furthermore, an exploit is available.VulDB Recent EntriesRead More