28 matches found
CVE-2020-24297
httpd on TP-Link TL-WPA4220 devices versions 2 through 4 allows remote authenticated users to execute arbitrary OS commands by sending crafted POST requests to the endpoint /admin/powerline. Fixed version: TL-WPA4220EUV4201023...
EUVD-2021-15512
Malware in sbrugna...
CVE-2020-28005
httpd on TP-Link TL-WPA4220 devices hardware versions 2 through 4 allows remote authenticated users to trigger a buffer overflow causing a denial of service by sending a POST request to the /admin/syslog endpoint. Fixed version: TL-WPA4220EUV4201023...
The vulnerability of the httpd-demon microprogramming system for TP-Link TL-WPA4220 allows a hacker to execute arbitrary commands.
The vulnerability of the httpd-demon microprogramming system for TP-Link TL-WPA4220 relates to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands by sending a special...
TP-Link TL-WPA4220 Information Disclosure Vulnerability
Tp-link TP-Link TL-WPA4220 is a home wireless WiFi bridge that extends wireless signals from China's Tp-link. The device can transmit data at high speed over the line to extend the network to areas that are currently not covered. The TP-Link TL-WPA4220 suffers from an information disclosure...
TP-Link TL-WPA4220 Information Disclosure Vulnerability (CNVD-2021-43409)
Tp-link TP-Link TL-WPA4220 is a home wireless WiFi bridge that extends wireless signals from China's Tp-link. The device can transmit data at high speed over the line to extend the network to areas that are currently not covered. An information disclosure vulnerability exists in the TP-Link...
CVE-2021-28857
TP-Link's TL-WPA4220 4.0.2 Build 20180308 Rel.37064 username and password are sent via the cookie...
CVE-2021-28858
TP-Link's TL-WPA4220 4.0.2 Build 20180308 Rel.37064 does not use SSL by default. Attacker on the local network can monitor traffic and capture the cookie and other sensitive information...
CVE-2021-28858
TP-Link's TL-WPA4220 4.0.2 Build 20180308 Rel.37064 does not use SSL by default. Attacker on the local network can monitor traffic and capture the cookie and other sensitive information...
CVE-2021-28857
TP-Link's TL-WPA4220 4.0.2 Build 20180308 Rel.37064 username and password are sent via the cookie...
Information disclosure
TP-Link's TL-WPA4220 4.0.2 Build 20180308 Rel.37064 does not use SSL by default. Attacker on the local network can monitor traffic and capture the cookie and other sensitive information...
CVE-2021-28857
TP-Link's TL-WPA4220 4.0.2 Build 20180308 Rel.37064 username and password are sent via the cookie...
CVE-2021-28857
CVE-2021-28857 affects TP-Link TL-WPA4220 devices running 4.0.2 Build 20180308 Rel.37064, where credentials (username and password) are transmitted via cookies. The information disclosure stems from cookies leaking credentials, enabling a potential attacker to obtain login data without exploitati...
CVE-2021-28858
TP-Link's TL-WPA4220 4.0.2 Build 20180308 Rel.37064 does not use SSL by default. Attacker on the local network can monitor traffic and capture the cookie and other sensitive information...
CVE-2021-28858
CVE-2021-28858 affects TP-Link TL-WPA4220 (firmware 4.0.2 Build 20180308 Rel.37064). The vulnerability is an information-disclosure issue caused by not using SSL by default, enabling an attacker on the local network to monitor traffic and capture cookies and other sensitive information. The provi...
TP-Link TL-WPA4220 信息泄露漏洞
Tp-link TP-Link TL-WPA4220 is a home wireless WiFi bridge that extends wireless signals from China's Tp-link. The device can transmit data at high speed over the line to extend the network to areas that are currently not covered. An information disclosure vulnerability exists in the TP-Link...
TP-Link TL-WPA4220 Buffer Overflow Vulnerability
The TP-Link TL-WPA4220 is a 300Mbps AV600 Wi-Fi powerline extender. A buffer overflow vulnerability exists in the TP-Link TL-WPA4220. A remote attacker can exploit this vulnerability by sending a POST request to the /admin/syslog endpoint to cause a denial of service...
TP-Link TL-WPA4220 Arbitrary OS Command Execution Vulnerability
The TP-Link TL-WPA4220 is a 300Mbps AV600 Wi-Fi powerline extender. An arbitrary OS command execution vulnerability exists in httpd in the TP-Link TL-WPA4220. A remote authenticated user can exploit this vulnerability to execute arbitrary OS commands by sending a specially crafted POST request to...
CVE-2020-24297
httpd on TP-Link TL-WPA4220 devices versions 2 through 4 allows remote authenticated users to execute arbitrary OS commands by sending crafted POST requests to the endpoint /admin/powerline. Fixed version: TL-WPA4220EUV4201023...
CVE-2020-28005
httpd on TP-Link TL-WPA4220 devices hardware versions 2 through 4 allows remote authenticated users to trigger a buffer overflow causing a denial of service by sending a POST request to the /admin/syslog endpoint. Fixed version: TL-WPA4220EUV4201023...