Koh You Liang

2 exploits Active since Dec 2020

CVE-2020-35575 NOMISEC CRITICAL WORKING POC

TP-Link WA901ND <3.16.9(201211) beta - Info Disclosure

A password-disclosure issue in the web interface on certain TP-Link devices allows a remote attacker to get full administrative access to the web panel. This affects WA901ND devices before 3.16.9(201211) beta, and Archer C5, Archer C7, MR3420, MR6400, WA701ND, WA801ND, WDR3500, WDR3600, WE843N, WR1043ND, WR1045ND, WR740N, WR741ND, WR749N, WR802N, WR840N, WR841HP, WR841N, WR842N, WR842ND, WR845N, WR940N, WR941HP, WR945N, WR949N, and WRD4300 devices.

1 stars

CVSS 9.8

View Code

CVE-2020-35576 EXPLOITDB HIGH python WORKING POC

Tp-link Tl-wr841n Firmware < 201216 - OS Command Injection

A Command Injection issue in the traceroute feature on TP-Link TL-WR841N V13 (JP) with firmware versions prior to 201216 allows authenticated users to execute arbitrary code as root via shell metacharacters, a different vulnerability than CVE-2018-12577.

CVSS 8.8

View Code