admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-11-30 18:56:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2024/CVE-2024-10966.md

19 lines
977 B
Markdown
Raw Normal View History

Update CVE sources 2025-09-29 16:08
2025-09-29 16:08:36 +00:00
### [CVE-2024-10966](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-10966)
![](https://img.shields.io/static/v1?label=Product&message=X18&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%209.1.0cu.2024_B20220329%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Command%20Injection&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=OS%20Command%20Injection&color=brighgreen)
### Description
A vulnerability, which was classified as critical, has been found in TOTOLINK X18 9.1.0cu.2024_B20220329. Affected by this issue is some unknown functionality of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument enable leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
### POC
#### Reference
- https://github.com/Dreamy-elfland/240914
#### Github
No PoCs found on GitHub currently.
Reference in New Issue Copy Permalink