Vulners
Lucene search
TP-LINK TL-WR840N v5 00000005 - Cross-Site Scripting
| Reporter | Title | Published | Views | Family All 12 |
|---|---|---|---|---|
 | TP-LINK TL-WR840N v5 00000005 - Cross-Site Scripting Vulnerability | 21 May 201900:00 | – | zdt |
 | CVE-2019-12195 | 24 May 201916:48 | – | circl |
 | TP-LINK TL-WR840N v5 XSS Injection Vulnerability | 22 May 201900:00 | – | cnvd |
 | CVE-2019-12195 | 24 May 201915:24 | – | cve |
 | CVE-2019-12195 | 24 May 201915:24 | – | cvelist |
 | EUVD-2019-3843 | 7 Oct 202500:30 | – | euvd |
 | TP-LINK TL-WR840N v5 00000005 - Cross-Site Scripting | 21 May 201900:00 | – | exploitpack |
 | CVE-2019-12195 | 24 May 201916:29 | – | nvd |
 | CVE-2019-12195 | 24 May 201916:29 | – | osv |
 | TP-LINK TL-WR840N Cross Site Scripting | 21 May 201900:00 | – | packetstorm |
10
# Exploit Title: TL-WR840N v5 00000005
# Date: 5/10/2019
# Exploit Author: purnendu ghosh
# Vendor Homepage: https://www.tp-link.com/
# Software Link: https://www.amazon.in/TP-LINK-TL-WR840N-300Mbps-Wireless-External/dp/B01A0G1J7Q
# Category: Hardware
# Firmware Version:0.9.1 3.16 v0001.0 Build 171211 Rel.58800n
# Hardware Version:TL-WR840N v5 00000005
# Tested on: Windows 10
# CVE :CVE-2019-12195.
# Proof Of Concept:
TP-Link TL-WR840N v5 00000005 devices allow XSS via the network name. The attacker must
log into the router by breaking the password and going to the admin
login page by THC-HYDRA to get the network name. With an XSS payload,
the network name changed automatically and the internet connection was
disconnected. All the users become disconnected from
the internet.
------------------------------------------
[Additional Information]
To ensure your network to be safe from Renaming and internet disconnection.
------------------------------------------
[Vulnerability Type]
Cross Site Scripting (XSS)
------------------------------------------
[Vendor of Product]
tp-link
------------------------------------------
[Affected Product Code Base]
router - TL-WR840N v5 00000005
------------------------------------------
[Affected Component]
Wi-Fi network configured through the router
------------------------------------------
[Attack Type]
Remote
------------------------------------------
[Impact Denial of Service]
true
------------------------------------------
[Impact Information Disclosure]
true
------------------------------------------
[Attack Vectors]
Logged in to the router by breaking the password and goes to the admin
login page by THC-HYDRA and got the network name. Using Burp Suite
professional version 1.7.32 captured the network name and selected XSS
payload against the name and started attacking .as a result the
network name changed automatically and internet connection was
disconnected in the network. All the users become disconnected from
internet.
------------------------------------------
[Discoverer]
purnendu ghosh
[Reference]
https://www.tp-link.com/us/securityData
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
21 May 2019 00:00Current
5.1Medium risk
Vulners AI Score5.1
CVSS 23.5
CVSS 34.8
EPSS0.00447