CVE-2012-5687

TP-LINK TL-WR841N <3.13.9 - Path Traversal

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2012-5687. Includes Metasploit module auxiliary/scanner/http/tplink_traversal_noauth.

AI-analyzed exploit summary This advisory details multiple vulnerabilities in TP-Link TL-WA701N/ND devices, including directory traversal (CVE-2012-5687), stored XSS, and weak password change mechanisms. It provides technical details, example HTTP requests, and references to prior research.

Description

Directory traversal vulnerability in the web-based management feature on the TP-LINK TL-WR841N router with firmware 3.13.9 build 120201 Rel.54965n and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the PATH_INFO to the help/ URI.

Exploits (2)

exploitdb WRITEUP

webappshardware

https://www.exploit-db.com/exploits/24504

View Code ZIP pw:eip

This advisory details multiple vulnerabilities in TP-Link TL-WA701N/ND devices, including directory traversal (CVE-2012-5687), stored XSS, and weak password change mechanisms. It provides technical details, example HTTP requests, and references to prior research.

Classification

Writeup 95%

Attack Type

Info Leak | Xss | Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: TP-Link TL-WA701N/ND firmware versions 3.12.6 and 3.12.16

No auth needed

Prerequisites: Network access to the vulnerable device

MITRE ATT&CK

T1006 - Direct Volume Access T1190 - Exploit Public-Facing Application T1059.007 - JavaScript

devstral-2 · analyzed Feb 19, 2026 Full analysis →

metasploit WORKING POC

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/tplink_traversal_noauth.rb

View Code ZIP pw:eip

This Metasploit module exploits a directory traversal vulnerability in TP-Link Wireless Lite N Access Point 3.12.16 Build 120228 Rel.37317n, allowing unauthorized access to sensitive files via crafted HTTP GET requests.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: TP-Link Wireless Lite N Access Point 3.12.16 Build 120228 Rel.37317n

No auth needed

Prerequisites: Network access to the vulnerable TP-Link device · A list of sensitive files to target

MITRE ATT&CK

T1006 - Direct Volume Access

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit, Third Party Advisory x_refsource_misc

http://packetstormsecurity.org/files/117749/TP-LINK-TL-WR841N-Local-File-Inclusion.html

Exploit mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2012-10/0154.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/79662

Scores

EPSS 0.6872

EPSS Percentile 99.3%

Details

CWE

CWE-22

Status published

Products (2)

tp-link/tl-wr841n

tp-link/tl-wr841n_firmware < 3.13.9

Published Nov 01, 2012

Tracked Since Feb 18, 2026