A vulnerability classified as critical was found in TOTOLINK T6 4.1.5cu.748. This vulnerability affects the function ckeckKeepAlive of the file wireless.so of the component MQTT Packet Handler. The manipulation leads to command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-7952 is a command injection vulnerability identified in the TOTOLINK T6 router, specifically in version 4.1.5cu.748. The flaw resides in the function ckeckKeepAlive within the wireless.so component, which handles MQTT packets. MQTT (Message Queuing Telemetry Transport) is a lightweight messaging protocol commonly used in IoT and networking devices for telemetry and control. The vulnerability allows an attacker to remotely inject arbitrary commands due to insufficient input validation or sanitization in the MQTT packet handler. This can lead to execution of unauthorized commands on the device's underlying operating system. The vulnerability does not require user interaction and can be exploited remotely without authentication, increasing its risk profile. However, the CVSS 4.0 base score is 5.3 (medium severity), reflecting some mitigating factors such as limited impact on confidentiality, integrity, and availability (all rated low), and the requirement of low privileges (PR:L) to exploit. The exploit has been publicly disclosed but there are no known exploits actively used in the wild at this time. The vulnerability affects only the specific firmware version 4.1.5cu.748 of TOTOLINK T6 devices. No official patches or mitigation links have been provided yet. Given the nature of command injection, successful exploitation could allow attackers to execute arbitrary system commands, potentially leading to device compromise, network pivoting, or disruption of network services managed by the router.

CVE Database V5

Detailed information about CVE-2025-7952: Command Injection in TOTOLINK T6 affecting TOTOLINK T6. Get real-time updates, technical details, and mitigation strat

CVE-2025-7952: Command Injection in TOTOLINK T6 - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-7952: Command Injection in TOTOLINK T6

CVE-2025-54362 is a reported vulnerability identifier that was reserved on July 21, 2025, and assigned by Fortinet. However, the CVE entry is marked as REJECTED, indicating that after review, this identifier was not accepted as a valid vulnerability. There are no technical details, affected versions, or exploit information available. No CVSS score has been assigned, and there are no known exploits in the wild. The absence of any descriptive information, patch links, or indicators suggests that this CVE does not correspond to an actual security threat or vulnerability. The rejection status typically means the submission was either a duplicate, invalid, or did not meet the criteria for a CVE entry. Therefore, there is no actionable technical information to analyze or assess regarding this identifier.

Detailed information about CVE-2025-54362. Get real-time updates, technical details, and mitigation strategies.

CVE-2025-54362 - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-54362

CVE-2025-54361 is listed as a vulnerability identifier assigned by Fortinet and reserved on July 21, 2025. However, the entry currently lacks any technical details, affected versions, or description of the vulnerability. The CVE record is marked with a state of "REJECTED," indicating that the vulnerability was either invalidated, withdrawn, or determined not to be a security issue after initial assignment. There are no known exploits in the wild, no patch information, and no Common Weakness Enumeration (CWE) references. Without any technical data or evidence of exploitation, this CVE does not represent an active or confirmed security threat at this time.

Detailed information about CVE-2025-54361. Get real-time updates, technical details, and mitigation strategies.

CVE-2025-54361 - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-54361

CVE-2025-54360 is a reported vulnerability identifier reserved by Fortinet but currently marked as REJECTED in the CVE database. The absence of technical details, affected versions, patch information, or known exploits indicates that this entry does not correspond to an active or valid security vulnerability. The 'REJECTED' state typically means that the CVE request was invalid, duplicate, or otherwise not accepted as a legitimate vulnerability. Consequently, there is no substantive technical information available to analyze the nature, mechanism, or potential exploitation of this issue.

Detailed information about CVE-2025-54360. Get real-time updates, technical details, and mitigation strategies.

CVE-2025-54360 - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-54360

A vulnerability, which was classified as problematic, has been found in Sanluan PublicCMS up to 5.202506.a. This issue affects some unknown processing of the file publiccms-parent/publiccms/src/main/webapp/resource/plugins/pdfjs/viewer.html. The manipulation of the argument File leads to open redirect. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The patch is named f1af17af004ca9345c6fe4d5936d87d008d26e75. It is recommended to apply a patch to fix this issue.

Detailed information about CVE-2025-7953: Open Redirect in Sanluan PublicCMS affecting Sanluan PublicCMS. Get real-time updates, technical details, and mitigati

CVE-2025-7953: Open Redirect in Sanluan PublicCMS

CVE-2025-7953: Open Redirect in Sanluan PublicCMS

Description

Technical Details

Related Threats

CVE-2025-7952: Command Injection in TOTOLINK T6

CVE-2025-54362

CVE-2025-54361

CVE-2025-54360

CVE-2025-54359

Actions

External Links

Need enhanced features?

Latest Threats

Keyboard Shortcuts

Navigation

Search & Filters

UI Controls

Accessibility