TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the name variable in the wportal.lua file.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
tp-link er5110g_firmware - |
||
tp-link er5120g_firmware - |
||
tp-link er5510g_firmware - |
||
tp-link er5520g_firmware - |
||
tp-link r4149g_firmware - |
||
tp-link r4239g_firmware - |
||
tp-link r4299g_firmware - |
||
tp-link r473gp-ac_firmware - |
||
tp-link r473g_firmware - |
||
tp-link r473p-ac_firmware - |
||
tp-link r473_firmware - |
||
tp-link r478g\\+_firmware - |
||
tp-link r478_firmware - |
||
tp-link r478\\+_firmware - |
||
tp-link r483g_firmware - |
||
tp-link r483_firmware - |
||
tp-link r488_firmware - |
||
tp-link war1300l_firmware - |
||
tp-link war1750l_firmware - |
||
tp-link war2600l_firmware - |
||
tp-link war302_firmware - |
||
tp-link war450l_firmware - |
||
tp-link war450_firmware - |
||
tp-link war458l_firmware - |
||
tp-link war458_firmware - |
||
tp-link war900l_firmware - |
||
tp-link wvr1300g_firmware - |
||
tp-link wvr1300l_firmware - |
||
tp-link wvr1750l_firmware - |
||
tp-link wvr2600l_firmware - |
||
tp-link wvr300_firmware - |
||
tp-link wvr302_firmware - |
||
tp-link wvr4300l_firmware - |
||
tp-link wvr450l_firmware 1.0161125 |
||
tp-link wvr450_firmware - |
||
tp-link wvr458l_firmware - |
||
tp-link wvr900g_firmware 3.0_170306 |
||
tp-link wvr900l_firmware - |
Vulmon