Exploit for CVE-2022-30075

TP-L-NK-SIZMA-EXPLO-T TP-Link Router Authenticated RCE Exploit...

CVE-2023-40357

Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer AX50 firmware versions prior to 'Archer AX50JPV1230529', Archer A10 firmware versions prior to 'Archer A10JPV2230504', Archer AX10 firmware...

Exploit for Command Injection in Tp-Link Tapo_C200_Firmware

CVEs A repository to group the CVEs that I have d...

EUVD-2025-15816

Malicious code in bioql PyPI...

EUVD-2024-27150

Malicious code in bioql PyPI...

CVE-2025-40634

Stack-based buffer overflow vulnerability in the 'conn-indicator' binary running as root on the TP-Link Archer AX50 router, in firmware versions prior to 1.0.15 build 241203 rel61480. This vulnerability allows an attacker to execute arbitrary code on the device over LAN and WAN networks...

CVE-2025-40634 Stack-based buffer overflow in TP-Link Archer AX50

Stack-based buffer overflow vulnerability in the 'conn-indicator' binary running as root on the TP-Link Archer AX50 router, in firmware versions prior to 1.0.15 build 241203 rel61480. This vulnerability allows an attacker to execute arbitrary code on the device over LAN and WAN networks...

CVE-2025-40634

The CVE-2025-40634 case describes a stack-based buffer overflow in the TP-Link Archer AX50 router’s conn-indicator binary (running as root) prior to firmware 1.0.15 build 241203 rel61480. The root cause is a vulnerable DNS response handling path: processing DNS answers writes into a 256-byte dest...

PT-2025-22127 · Tp Link · Tp-Link Archer C50

Name of the Vulnerable Software and Affected Versions: TP-Link Archer AX50 versions prior to 1.0.15 build 241203 rel61480 Description: The issue is a stack-based buffer overflow vulnerability in the 'conn-indicator' binary running as root on the TP-Link Archer AX50 router. This vulnerability allo...

TP-LINK Archer AX50 安全漏洞

TP-LINK Archer AX50 is a wireless router from China P&L TP-LINK. A security vulnerability exists in versions prior to TP-LINK Archer AX50 1.0.15 build 241203 rel61480, which stems from a stack buffer overflow in the conn-indicator that could lead to the execution of arbitrary code...

VulnCheck KEV: CVE-2022-30075

In TP-Link Router AX50 firmware 210730 and older, import of a malicious backup file via web interface can lead to remote code execution due to improper validation...

TP-LINK AX50 Cross Site Scripting Vulnerability

TP-LINK AX50 is a router device from China P&L TP-LINK. A cross-site scripting vulnerability exists in TP-LINK AX50 version 1.0.11 build 2022052. The vulnerability stems from the application's lack of effective filtering and escaping of user-supplied data, which can be exploited by an attacker to...

CVE-2024-2188

Cross-Site Scripting XSS vulnerability stored in TP-Link Archer AX50 affecting firmware version 1.0.11 build 2022052. This vulnerability could allow an unauthenticated attacker to create a port mapping rule via a SOAP request and store a malicious JavaScript payload within that rule, which could...

CVE-2024-2188

Cross-Site Scripting XSS vulnerability stored in TP-Link Archer AX50 affecting firmware version 1.0.11 build 2022052. This vulnerability could allow an unauthenticated attacker to create a port mapping rule via a SOAP request and store a malicious JavaScript payload within that rule, which could...

Cross site scripting

Cross-Site Scripting XSS vulnerability stored in TP-Link Archer AX50 affecting firmware version 1.0.11 build 2022052. This vulnerability could allow an unauthenticated attacker to create a port mapping rule via a SOAP request and store a malicious JavaScript payload within that rule, which could...

CVE-2024-2188 Cross-Site Scripting vulnerability in TP-Link Archer AX50

Cross-Site Scripting XSS vulnerability stored in TP-Link Archer AX50 affecting firmware version 1.0.11 build 2022052. This vulnerability could allow an unauthenticated attacker to create a port mapping rule via a SOAP request and store a malicious JavaScript payload within that rule, which could...

CVE-2024-2188 Cross-Site Scripting vulnerability in TP-Link Archer AX50

Cross-Site Scripting XSS vulnerability stored in TP-Link Archer AX50 affecting firmware version 1.0.11 build 2022052. This vulnerability could allow an unauthenticated attacker to create a port mapping rule via a SOAP request and store a malicious JavaScript payload within that rule, which could...

CVE-2024-2188

Summary: CVE-2024-2188 is a stored XSS in TP-Link Archer AX50 (firmware 1.0.11 build 2022052). An unauthenticated attacker can create a port-mapping rule via a SOAP request, storing a malicious JavaScript payload that executes when the rule loads. Affected product (from provided docs): TP-Link Ar...

TP-LINK AX50 跨站脚本漏洞

TP-LINK AX50 is a router device from China P&L TP-LINK. A cross-site scripting vulnerability exists in TP-LINK AX50 version 1.0.11 build 2022052. The vulnerability stems from the application's lack of effective filtering and escaping of user-supplied data, which can be exploited by an attacker to...

TP-LINK Archer AX50/A10 Command Execution Vulnerability

The TP-LINK Archer is a series of routers from China P&L TP-LINK. A command execution vulnerability exists in firmware versions prior to TP-LINK Archer AX50JPV1230529, Archer A10JPV2230504, which stems from an application failing to correctly filter constructed command special characters, command...