Unrated severityNVD Advisory· Published Nov 27, 2018· Updated Aug 5, 2024
CVE-2018-13314
CVE-2018-13314
Description
System command injection in formAliasIp in TOTOLINK A3002RU version 1.0.8 allows attackers to execute system commands via the "ipAddr" POST parameter.
Affected products
1Patches
Vulnerability mechanics
References
1- blog.securityevaluators.com/new-vulnerabilities-in-totolink-a3002ru-d6f42a081154mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.