The vulnerability of the microprogramming software of the TP-Link EAP120 wireless access point lies in the lack of measures taken to protect the SQL query structure, allowing a hacker to execute arbitrary code.

The vulnerability of the microprogrammed access point TP-Link EAP120 relates to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by introducing specially crafted SQL code remotely...

CVE-2025-29648

SQL Injection vulnerability exists in the TP-Link EAP120 router s login dashboard version 1.0, allowing an unauthenticated attacker to inject malicious SQL statements via the login fields. NOTE: this is disputed because the issue can only be reproduced on a supplier-provided emulator, where acces...

CVE-2025-29648

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accidental usage...

CVE-2025-29648

...

CVE-2025-29648

CVE-2025-29648 is rejected/not used per the Initial Description.

CVE-2025-29648

...

编号撤回

The TP-LINK EAP120 is a wireless access point from China's P&L TP-LINK company This CVE number has been withdrawn...