CVE-2018-13314

Publication date

2018-11-27 21:00:00

Family

mitre

State

PUBLISHED

Description

System command injection in formAliasIp in TOTOLINK A3002RU version 1.0.8 allows attackers to execute system commands via the "ipAddr" POST parameter.