CVE-2018-25321

MEDIUM

TP-Link TL-WR720N All Versions CSRF via Administrative Interfaces

Title source: cna

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-25321. PoCs published by Mans van Someren.

AI-analyzed exploit summary This JavaScript code demonstrates a CSRF vulnerability in TP-Link TL-WR720N routers, allowing unauthorized port forwarding and Wi-Fi password changes via crafted HTTP requests. The exploit targets the router's web interface without requiring authentication.

Description

TP-Link TL-WR720N wireless router contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized administrative actions by crafting malicious web requests. Attackers can modify port forwarding rules via VirtualServerRpm.htm or change WiFi security settings via WlanSecurityRpm.htm by tricking authenticated users into visiting attacker-controlled pages.

Exploits (1)

exploitdb WORKING POC

by Mans van Someren · javascriptwebappshardware

https://www.exploit-db.com/exploits/44335

View Code ZIP pw:eip

This JavaScript code demonstrates a CSRF vulnerability in TP-Link TL-WR720N routers, allowing unauthorized port forwarding and Wi-Fi password changes via crafted HTTP requests. The exploit targets the router's web interface without requiring authentication.

Classification

Working Poc 95%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: TP-Link TL-WR720N 150Mbps Wireless N Router (all versions)

No auth needed

Prerequisites: Victim must visit a malicious webpage hosting this script · Router must be accessible on the local network

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed May 17, 2026 Full analysis →

References (4)

Core 4

Core References

Exploit exploit

ExploitDB-44335

https://www.exploit-db.com/exploits/44335

Product product

Official Product Homepage

https://www.tp-link.com/

Product product

Product Reference

https://static.tp-link.com/resources/software/TL-WR720N_V1_130719.zip

Third Party Advisory third-party-advisory

VulnCheck Advisory: TP-Link TL-WR720N All Versions CSRF via Administrative Interfaces

https://www.vulncheck.com/advisories/tp-link-tl-wr720n-all-versions-csrf-via-administrative-interfaces

Scores

CVSS v3 4.3

EPSS 0.0001

EPSS Percentile 0.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-352

Status published

Products (2)

tp-link/tl-wr720n_firmware < v1_130719

Tp-link/TL-WR720NMbps Wireless N Router V1_130719

Published May 17, 2026

Tracked Since May 17, 2026