VYPR
Unrated severityNVD Advisory· Published Nov 27, 2018· Updated Aug 5, 2024

CVE-2018-13306

CVE-2018-13306

Description

System command injection in formDlna in TOTOLINK A3002RU version 1.0.8 allows attackers to execute system commands via the "ftpUser" POST parameter.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.