Tenda FH1206 V1.2.0.8(8155) exists to contain a command injection vulnerability via the cmdinput parameter at ip/goform/formexeCommand.