31 matches found
Exploit for CVE-2022-30075
TP-L-NK-SIZMA-EXPLO-T TP-Link Router Authenticated RCE Exploit...
CVE-2023-40357
Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer AX50 firmware versions prior to 'Archer AX50JPV1230529', Archer A10 firmware versions prior to 'Archer A10JPV2230504', Archer AX10 firmware...
Exploit for Command Injection in Tp-Link Tapo_C200_Firmware
CVEs A repository to group the CVEs that I have d...
EUVD-2025-15816
Malicious code in bioql PyPI...
EUVD-2024-27150
Malicious code in bioql PyPI...
The vulnerability of the conn-indicator component in TP-Link Archer AX50 Wi-Fi routers allows a hacker to execute arbitrary code.
The vulnerability of the conn-indicator component in TP-Link Archer AX50 Wi-Fi routers is related to buffer overflow in the stack. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending specially crafted network packets...
CVE-2025-40634
Stack-based buffer overflow vulnerability in the 'conn-indicator' binary running as root on the TP-Link Archer AX50 router, in firmware versions prior to 1.0.15 build 241203 rel61480. This vulnerability allows an attacker to execute arbitrary code on the device over LAN and WAN networks...
CVE-2025-40634
The CVE-2025-40634 case describes a stack-based buffer overflow in the TP-Link Archer AX50 router’s conn-indicator binary (running as root) prior to firmware 1.0.15 build 241203 rel61480. The root cause is a vulnerable DNS response handling path: processing DNS answers writes into a 256-byte dest...
CVE-2025-40634 Stack-based buffer overflow in TP-Link Archer AX50
Stack-based buffer overflow vulnerability in the 'conn-indicator' binary running as root on the TP-Link Archer AX50 router, in firmware versions prior to 1.0.15 build 241203 rel61480. This vulnerability allows an attacker to execute arbitrary code on the device over LAN and WAN networks...
PT-2025-22127 · Tp Link · Tp-Link Archer C50
Name of the Vulnerable Software and Affected Versions: TP-Link Archer AX50 versions prior to 1.0.15 build 241203 rel61480 Description: The issue is a stack-based buffer overflow vulnerability in the 'conn-indicator' binary running as root on the TP-Link Archer AX50 router. This vulnerability allo...
TP-LINK Archer AX50 安全漏洞
TP-LINK Archer AX50 is a wireless router from China P&L TP-LINK. A security vulnerability exists in versions prior to TP-LINK Archer AX50 1.0.15 build 241203 rel61480, which stems from a stack buffer overflow in the conn-indicator that could lead to the execution of arbitrary code...
The vulnerability of TP-Link Archer AX50 (AX3000) Wi-Fi routers, related to the lack of protective measures for the website structure, allows attackers to execute arbitrary JavaScript code.
The vulnerability of TP-Link Archer AX50 AX3000 Wi-Fi routers’ microprogramming software is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a hacker to execute arbitrary JavaScript code during the loading of custom port redirection rule...
CVE-2024-2188
Cross-Site Scripting XSS vulnerability stored in TP-Link Archer AX50 affecting firmware version 1.0.11 build 2022052. This vulnerability could allow an unauthenticated attacker to create a port mapping rule via a SOAP request and store a malicious JavaScript payload within that rule, which could...
CVE-2024-2188
Cross-Site Scripting XSS vulnerability stored in TP-Link Archer AX50 affecting firmware version 1.0.11 build 2022052. This vulnerability could allow an unauthenticated attacker to create a port mapping rule via a SOAP request and store a malicious JavaScript payload within that rule, which could...
Cross site scripting
Cross-Site Scripting XSS vulnerability stored in TP-Link Archer AX50 affecting firmware version 1.0.11 build 2022052. This vulnerability could allow an unauthenticated attacker to create a port mapping rule via a SOAP request and store a malicious JavaScript payload within that rule, which could...
CVE-2024-2188 Cross-Site Scripting vulnerability in TP-Link Archer AX50
Cross-Site Scripting XSS vulnerability stored in TP-Link Archer AX50 affecting firmware version 1.0.11 build 2022052. This vulnerability could allow an unauthenticated attacker to create a port mapping rule via a SOAP request and store a malicious JavaScript payload within that rule, which could...
CVE-2024-2188 Cross-Site Scripting vulnerability in TP-Link Archer AX50
Cross-Site Scripting XSS vulnerability stored in TP-Link Archer AX50 affecting firmware version 1.0.11 build 2022052. This vulnerability could allow an unauthenticated attacker to create a port mapping rule via a SOAP request and store a malicious JavaScript payload within that rule, which could...
CVE-2024-2188
Summary: CVE-2024-2188 is a stored XSS in TP-Link Archer AX50 (firmware 1.0.11 build 2022052). An unauthenticated attacker can create a port-mapping rule via a SOAP request, storing a malicious JavaScript payload that executes when the rule loads. Affected product (from provided docs): TP-Link Ar...
The vulnerability of the microprogrammed software of TP-Link Archer AX50, Archer A10, Archer AX10, and Archer AX11000 Wi-Fi routers exists due to the lack of measures taken to neutralize special elements used in the operating system. This vulnerability allows a hacker to execute arbitrary commands in the operating system.
The vulnerability of TP-Link Archer AX50, Archer A10, Archer AX10, and Archer AX11000 Wi-Fi routers exists due to the lack of measures taken to neutralize specific components used in the operating system. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands in the...
TP-LINK Archer AX50/A10 Command Execution Vulnerability
The TP-LINK Archer is a series of routers from China P&L TP-LINK. A command execution vulnerability exists in firmware versions prior to TP-LINK Archer AX50JPV1230529, Archer A10JPV2230504, which stems from an application failing to correctly filter constructed command special characters, command...