TP-LINK - Local File Inclusion

TP-LINK is susceptible to local file inclusion in these products: Archer C5 1.2 with firmware before 150317, Archer C7 2.0 with firmware before 150304, and C8 1.0 with firmware before 150316, Archer C9 1.0, TL-WDR3500 1.0, TL-WDR3600 1.0, and TL-WDR4300 1.0 with firmware before 150302, TL-WR740N...

EUVD-2013-4509

Malware in sbrugna...

EUVD-2013-4693

Malware in sbrugna...

CVE-2013-4848

TP-Link TL-WDR4300 version 3.13.31 has multiple CSRF vulnerabilities...

Weak Password Vulnerability in WDR4300 of P&L Technologies Ltd.

"TP-LINK" is a leading global supplier of network communication equipment. A weak password vulnerability exists in TP-LINK WDR4300, which can be exploited by an attacker to log in to the system backend and obtain sensitive information...

TP-Link WDR4300 - Remote Code Execution (Authenticated) Exploit

Exploit Title: TP-Link WDR4300 - Remote Code Execution Authenticated Date: 2020-08-28 Exploit Author: Patrik Lantz Vendor Homepage: https://www.tp-link.com/se/home-networking/wifi-router/tl-wdr4300/ Version: TL-WDR4300, N750 Wireless Dual Band Gigabit Router Tested on: Firmware version 3.13.33 an...

TP-Link WDR4300 - Remote Code Execution (Authenticated)

Exploit Title: TP-Link WDR4300 - Remote Code Execution Authenticated Date: 2020-08-28 Exploit Author: Patrik Lantz Vendor Homepage: https://www.tp-link.com/se/home-networking/wifi-router/tl-wdr4300/ Version: TL-WDR4300, N750 Wireless Dual Band Gigabit Router Tested on: Firmware version 3.13.33 an...

TP-Link WDR4300 Remote Code Execution Exploit

TP-Link WDR4300 with firmware versions 3.13.33 and 3.14.3 post-authentication remote code execution exploit. !/usr/bin/python3 import sys import hashlib import base64 import requests import binascii import socket """ RCE via stack-based overflow on TP-Link WDR4300 N750 devices, using...

TP-Link WDR4300 Remote Code Execution

!/usr/bin/python3 import sys import hashlib import base64 import requests import binascii import socket """ RCE via stack-based overflow on TP-Link WDR4300 N750 devices, using CVE-2017-13772. Tested on Firmware versions 3.13.33, Build 130618 and 3.14.3 Build 150518, hardware WDR4300 v1 Usage: 1...

CVE-2013-4654

CVE-2013-4654 is a symlink traversal vulnerability affecting TP-LINK TL-WDR4300 and TL-1043ND. The CVE entry describes a path traversal flaw enabling unauthorized access with network access and no user interaction, with high to critical impact (Confidentiality, Integrity, Availability). The NVD d...

TP-Link TL-WDR4300 Cross-Site Request Forgery Vulnerability (CNVD-2019-40473)

The TP-Link TL-WDR4300 is a wireless router from China P&L TP-Link. A cross-site request forgery vulnerability exists in the TP-Link TL-WDR4300 version 3.13.31. The vulnerability stems from a WEB application that does not adequately validate that a request is coming from a trusted user, and can b...

CVE-2013-4848

TP-Link TL-WDR4300 version 3.13.31 has multiple CSRF vulnerabilities...

Cross site request forgery (csrf)

TP-Link TL-WDR4300 version 3.13.31 has multiple CSRF vulnerabilities...

CVE-2013-4848

TP-Link TL-WDR4300 version 3.13.31 has multiple CSRF vulnerabilities...

CVE-2013-4848

CVE-2013-4848 concerns TP-Link TL-WDR4300 (v3.13.31) with multiple CSRF vulnerabilities in the router’s web management interface. Connected sources consistently describe cross-site request forgery affecting the device, stemming from inadequate validation in the web application that could enable u...

Directory traversal

Directory traversal vulnerability in TP-LINK Archer C5 1.2 with firmware before 150317, C7 2.0 with firmware before 150304, and C8 1.0 with firmware before 150316, Archer C9 1.0, TL-WDR3500 1.0, TL-WDR3600 1.0, and TL-WDR4300 1.0 with firmware before 150302, TL-WR740N 5.0 and TL-WR741ND 5.0 with...

CVE-2015-3035

TP-LINK routers are affected by CVE-2015-3035: a directory traversal in PATH_INFO triggered at /login/ that allows remote attackers to read arbitrary files. Affected models and firmware windows include Archer C5 (1.2) <150317, C7 (2.0) <150304, C8 (1.0) <150316, Archer C9 (1.0), TL-WDR35...

PT-2015-3445 · Tp Link · Tp-Link Tl-Wr741N +10

Name of the Vulnerable Software and Affected Versions: TP-LINK Archer C5 versions 1.2 with firmware before 150317 TP-LINK Archer C7 version 2.0 with firmware before 150304 TP-LINK Archer C8 version 1.0 with firmware before 150316 TP-LINK Archer C9 version 1.0 TP-LINK TL-WDR3500 version 1.0 with...

Multiple TP-LINK Products LFI Vulnerability (Apr 2015) - Active Check

Multiple TP-LINK devices are prone to a local file include LFI vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

TP-LINK WDR4300 - Stored XSS & DoS

Advisory Information =============== Vendors Contacted: TP-LINK Vendor Patched: Yes, Firmware 140916 System Affected: N750 Wireless Dual Band Gigabit Router TL-WDR4300, might affect others. Versions Affected: 130617 , possibly earlier CVE Numbers Assigned: CVE-2014-4727, CVE-2014-4728...