Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
6.5 MEDIUM
CVE-2026-7720 — Totolink WA300 POST Request cstecgi.cgi setLanguageCfg command injection

A weakness has been identified in Totolink WA300 5.2cu.7112_B20190227. The impacted element is the function setLanguageCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. This…

wa300_firmware | Remote | Injection
May 04, 2026 May 04, 2026
May 04, 2026
May 04, 2026
10.0 HIGH
CVE-2026-7719 — Totolink WA300 POST Request cstecgi.cgi loginauth buffer overflow

A security flaw has been discovered in Totolink WA300 5.2cu.7112_B20190227. The affected element is the function loginauth of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The …

wa300_firmware | Remote | Memory Corruption
May 04, 2026 May 04, 2026
May 04, 2026
May 04, 2026
6.5 MEDIUM
CVE-2026-7718 — Totolink WA300 POST Request cstecgi.cgi setWebWlanIdx command injection

A vulnerability was identified in Totolink WA300 5.2cu.7112_B20190227. Impacted is the function setWebWlanIdx of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation …

wa300_firmware | Remote | Injection
May 04, 2026 May 04, 2026
May 04, 2026
May 04, 2026
Showing 20 of 7163 Results