CVE-2024-31815 Information

Description

In TOTOLINK EX200 V4.0.3c.7314_B20191204 an attacker can obtain the configuration file without authorization through /cgi-bin/ExportSettings.sh

Reference

https://github.com/4hsien/CVE-vulns/blob/main/TOTOLINK/EX200/Leak_ExportSettings/Leak.md