WRITEUP

This repository contains a functional Python-based exploit for CVE-2025-65202, demonstrating an authenticated remote command injection vulnerability in Trendnet TEW-657BRM firmware via the setup.cgi binary. The PoC sends a crafted HTTP POST request with specific parameters to execute arbitrary commands with root privileges.