Chuan Qin

4 exploits Active since Aug 2021
CVE-2021-35324 WRITEUP CRITICAL WRITEUP
TOTOLINK A720R <V4.1.5cu.470 - Auth Bypass
A vulnerability in the Form_Login function of TOTOLINK A720R A720R_Firmware V4.1.5cu.470_B20200911 allows attackers to bypass authentication.
CVSS 9.8
CVE-2021-35325 WRITEUP HIGH WRITEUP
TOTOLINK A720R <4.1.5cu.470 - DoS
A stack overflow in the checkLoginUser function of TOTOLINK A720R A720R_Firmware v4.1.5cu.470_B20200911 allows attackers to cause a denial of service (DOS).
CVSS 7.5
CVE-2021-35326 WRITEUP HIGH WRITEUP
TOTOLINK A720R <4.1.5cu.470 - Info Disclosure
A vulnerability in TOTOLINK A720R router with firmware v4.1.5cu.470_B20200911 allows attackers to download the configuration file via sending a crafted HTTP request.
CVSS 7.5
CVE-2021-35327 WRITEUP CRITICAL WRITEUP
TOTOLINK A720R <4.1.5cu.470_B20200911 - RCE
A vulnerability in TOTOLINK A720R A720R_Firmware v4.1.5cu.470_B20200911 allows attackers to start the Telnet service, then login with the default credentials via a crafted POST request.
CVSS 9.8