CVE-2013-2678

HIGH EXPLOITED

Cisco Linksys E4200 1.0.05 - Code Injection

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2013-2678 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 3 public exploits from researchers including m-1-k-3, sqlhacker.

AI-analyzed exploit summary This exploit demonstrates an OS command injection vulnerability in Linksys E1500/E2500 routers via the `ping_size` parameter in `apply.cgi`, allowing arbitrary command execution. It also includes examples of directory traversal, CSRF, XSS, and password change vulnerabilities.

Description

Cisco Linksys E4200 1.0.05 Build 7 routers contain a Local File Include Vulnerability which could allow remote attackers to obtain sensitive information or execute arbitrary code by sending a crafted URL request to the apply.cgi script using the submit_type parameter.

Exploits (3)

exploitdb WORKING POC VERIFIED
by m-1-k-3 · textwebappshardware
https://www.exploit-db.com/exploits/24475

This exploit demonstrates an OS command injection vulnerability in Linksys E1500/E2500 routers via the `ping_size` parameter in `apply.cgi`, allowing arbitrary command execution. It also includes examples of directory traversal, CSRF, XSS, and password change vulnerabilities.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Linksys E1500/E2500 firmware versions v1.0.00 - v1.0.05
Auth required
Prerequisites: Authentication credentials · Network access to the router's web interface
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC
by sqlhacker · textwebappshardware
https://www.exploit-db.com/exploits/25292

The exploit demonstrates reflected XSS and LFI vulnerabilities in Cisco Linksys E4200 firmware. It includes PoC examples for both XSS (via multiple parameters) and LFI (via path traversal in `apply.cgi`).

Classification
Working Poc 90%
Attack Type
Xss | Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Cisco Linksys E4200 Firmware Version 1.0.05 build 7 and prior
No auth needed
Prerequisites: Network access to the vulnerable device
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC
by m-1-k-3 · textwebappshardware
https://www.exploit-db.com/exploits/24478

This exploit demonstrates an OS command injection vulnerability in Linksys WRT160Nv2 firmware v2.0.03 via the `ping_size` parameter in `apply.cgi`, allowing arbitrary command execution. It also includes details on directory traversal, XSS, and CSRF vulnerabilities.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Linksys WRT160Nv2 firmware v2.0.03
Auth required
Prerequisites: Authentication to the device · Network access to the target
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/59710
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/25292
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/84072

Scores

CVSS v3 8.1
EPSS 0.7130
EPSS Percentile 98.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2018-07-13
CWE
CWE-74
Status published
Products (1)
cisco/linksys_e4200_firmware 1.0.05
Published Feb 04, 2020
Tracked Since Feb 18, 2026