EIP-2026-102054

PRE-CVE

TP-Link Archer C50 Wireless Router 171227 - Cross-Site Request Forgery (Configuration File Disclosure)

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102054. PoCs published by Wadeek.

AI-analyzed exploit summary This exploit leverages a CSRF vulnerability in TP-Link Archer C50 routers to disclose the configuration file by sending a crafted POST request. The payload is encoded and decrypted using DES-ECB to extract sensitive configuration data.

Description

TP-Link Archer C50 Wireless Router 171227 - Cross-Site Request Forgery (Configuration File Disclosure)

Exploits (1)

exploitdb WORKING POC
by Wadeek · rubywebappshardware
https://www.exploit-db.com/exploits/45811

This exploit leverages a CSRF vulnerability in TP-Link Archer C50 routers to disclose the configuration file by sending a crafted POST request. The payload is encoded and decrypted using DES-ECB to extract sensitive configuration data.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: TP-Link Archer C50 Wireless Router (Firmware <= Build 171227)
No auth needed
Prerequisites: Network access to the router's web interface · Victim interaction (CSRF)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026