Haaalion

**Name of the Vulnerable Software and Affected Versions** Tenda 4G300 version US 4G300V1.0Mt V1.01.42 CN TDC01 **Description** A command injection issue exists in the `sub 425A28()` function within the '/goform/DelFil' endpoint. The flaw is caused by the failure to neutralize special elements when processing the `delflag` argument, allowing a remote attacker to execute arbitrary commands. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, restrict access to the '/goform/DelFil' endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Tenda 4G300 version US 4G300V1.0Mt V1.01.42 CN TDC01 **Description** A stack-based buffer overflow exists in the `sub 427C3C()` function within the `/goform/SafeMacFilter` file. This issue occurs due to the improper manipulation of the `page` argument, which allows for remote exploitation and potential remote code execution. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TOTOLINK X5000R version 9.1.0cu.2415 B20250515 **Description** A command injection issue exists in the `sub 410C34` function of the `/cgi-bin/cstecgi.cgi` file. Manipulation of the `pid` argument can lead to remote code execution. The exploit has been made public. **Recommendations** As a temporary workaround, consider restricting access to the `/cgi-bin/cstecgi.cgi` file until a patch is available.