41 matches found
Exploit for CVE-2022-30075
TP-L-NK-SIZMA-EXPLO-T TP-Link Router Authenticated RCE Exploit...
CVE-2023-40357
Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer AX50 firmware versions prior to 'Archer AX50JPV1230529', Archer A10 firmware versions prior to 'Archer A10JPV2230504', Archer AX10 firmware...
Exploit for Command Injection in Tp-Link Tapo_C200_Firmware
CVEs A repository to group the CVEs that I have d...
EUVD-2025-15816
Malicious code in bioql PyPI...
EUVD-2024-27150
Malicious code in bioql PyPI...
The vulnerability of the conn-indicator component in TP-Link Archer AX50 Wi-Fi routers allows a hacker to execute arbitrary code.
The vulnerability of the conn-indicator component in TP-Link Archer AX50 Wi-Fi routers is related to buffer overflow in the stack. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending specially crafted network packets...
CVE-2025-40634
Stack-based buffer overflow vulnerability in the 'conn-indicator' binary running as root on the TP-Link Archer AX50 router, in firmware versions prior to 1.0.15 build 241203 rel61480. This vulnerability allows an attacker to execute arbitrary code on the device over LAN and WAN networks...
CVE-2025-40634 Stack-based buffer overflow in TP-Link Archer AX50
Stack-based buffer overflow vulnerability in the 'conn-indicator' binary running as root on the TP-Link Archer AX50 router, in firmware versions prior to 1.0.15 build 241203 rel61480. This vulnerability allows an attacker to execute arbitrary code on the device over LAN and WAN networks...
CVE-2025-40634
The CVE-2025-40634 case describes a stack-based buffer overflow in the TP-Link Archer AX50 router’s conn-indicator binary (running as root) prior to firmware 1.0.15 build 241203 rel61480. The root cause is a vulnerable DNS response handling path: processing DNS answers writes into a 256-byte dest...
TP-LINK Archer AX50 安全漏洞
TP-LINK Archer AX50 is a wireless router from China P&L TP-LINK. A security vulnerability exists in versions prior to TP-LINK Archer AX50 1.0.15 build 241203 rel61480, which stems from a stack buffer overflow in the conn-indicator that could lead to the execution of arbitrary code...
PT-2025-22127 · Tp Link · Tp-Link Archer C50
Name of the Vulnerable Software and Affected Versions: TP-Link Archer AX50 versions prior to 1.0.15 build 241203 rel61480 Description: The issue is a stack-based buffer overflow vulnerability in the 'conn-indicator' binary running as root on the TP-Link Archer AX50 router. This vulnerability allo...
VulnCheck KEV: CVE-2022-30075
In TP-Link Router AX50 firmware 210730 and older, import of a malicious backup file via web interface can lead to remote code execution due to improper validation...
The vulnerability of TP-Link Archer AX50 (AX3000) Wi-Fi routers, related to the lack of protective measures for the website structure, allows attackers to execute arbitrary JavaScript code.
The vulnerability of TP-Link Archer AX50 AX3000 Wi-Fi routers’ microprogramming software is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a hacker to execute arbitrary JavaScript code during the loading of custom port redirection rule...
TP-LINK AX50 Cross Site Scripting Vulnerability
TP-LINK AX50 is a router device from China P&L TP-LINK. A cross-site scripting vulnerability exists in TP-LINK AX50 version 1.0.11 build 2022052. The vulnerability stems from the application's lack of effective filtering and escaping of user-supplied data, which can be exploited by an attacker to...
CVE-2024-2188
Cross-Site Scripting XSS vulnerability stored in TP-Link Archer AX50 affecting firmware version 1.0.11 build 2022052. This vulnerability could allow an unauthenticated attacker to create a port mapping rule via a SOAP request and store a malicious JavaScript payload within that rule, which could...
CVE-2024-2188
Cross-Site Scripting XSS vulnerability stored in TP-Link Archer AX50 affecting firmware version 1.0.11 build 2022052. This vulnerability could allow an unauthenticated attacker to create a port mapping rule via a SOAP request and store a malicious JavaScript payload within that rule, which could...
Cross site scripting
Cross-Site Scripting XSS vulnerability stored in TP-Link Archer AX50 affecting firmware version 1.0.11 build 2022052. This vulnerability could allow an unauthenticated attacker to create a port mapping rule via a SOAP request and store a malicious JavaScript payload within that rule, which could...
CVE-2024-2188 Cross-Site Scripting vulnerability in TP-Link Archer AX50
Cross-Site Scripting XSS vulnerability stored in TP-Link Archer AX50 affecting firmware version 1.0.11 build 2022052. This vulnerability could allow an unauthenticated attacker to create a port mapping rule via a SOAP request and store a malicious JavaScript payload within that rule, which could...
CVE-2024-2188 Cross-Site Scripting vulnerability in TP-Link Archer AX50
Cross-Site Scripting XSS vulnerability stored in TP-Link Archer AX50 affecting firmware version 1.0.11 build 2022052. This vulnerability could allow an unauthenticated attacker to create a port mapping rule via a SOAP request and store a malicious JavaScript payload within that rule, which could...
CVE-2024-2188
Summary: CVE-2024-2188 is a stored XSS in TP-Link Archer AX50 (firmware 1.0.11 build 2022052). An unauthenticated attacker can create a port-mapping rule via a SOAP request, storing a malicious JavaScript payload that executes when the rule loads. Affected product (from provided docs): TP-Link Ar...