Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

WA300 — Vulnerabilities & Security Advisories 8

All 8 CVE vulnerabilities found in WA300, with AI-generated Chinese analysis, references, and POCs.

Vendor: TOTOLINK

CVE IDTitleCVSSSeverityPublished
CVE-2026-7721 Totolink WA300 cstecgi.cgi NTPSyncWithHost command injection CWE-77 6.3 Medium2026-05-04
CVE-2026-7720 Totolink WA300 POST Request cstecgi.cgi setLanguageCfg command injection CWE-77 6.3 Medium2026-05-04
CVE-2026-7719 Totolink WA300 POST Request cstecgi.cgi loginauth buffer overflow CWE-120 9.8 Critical2026-05-04
CVE-2026-7718 Totolink WA300 POST Request cstecgi.cgi setWebWlanIdx command injection CWE-77 6.3 Medium2026-05-04
CVE-2026-7717 Totolink WA300 POST Request cstecgi.cgi UploadCustomModule buffer overflow CWE-120 8.8 High2026-05-04
CVE-2026-4497 Totolink WA300 cstecgi.cgi recvUpgradeNewFw os command injection CWE-78 7.3 High2026-03-20
CVE-2026-2167 Totolink WA300 cstecgi.cgi setAPNetwork os command injection CWE-78 6.3 Medium2026-02-08
CVE-2026-0641 TOTOLINK WA300 cstecgi.cgi sub_401510 command injection CWE-77 6.3 Medium2026-01-06

All 8 known CVE vulnerabilities affecting WA300 with full Chinese analysis, references, and POCs where available.