Command Injection Vulnerability in TOTOLINK Router Products
Posted: Sat Aug 30, 2025 1:03 pm
The TOTOLINK A3002R router is susceptible to a command injection vulnerability via the devicemac parameter in the formMapDel endpoint. This flaw enables an attacker to execute arbitrary commands on the affected device, potentially leading to unauthorized access and control. It highlights the importance of securing router configurations and implementing robust protective measures to safeguard against exploitation.
https://securityvulnerability.io/vulner ... 2025-55591
https://securityvulnerability.io/vulner ... 2025-55591