EIP-2026-102073
PRE-CVETP-Link TL-WR740N v4 Router (FW-Ver. 3.16.6 Build 130529 Rel.47286n) - Command Execution
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-102073. PoCs published by Christoph Kuhl.
AI-analyzed exploit summary This exploit leverages command injection in TP-Link TL-WR740N v4's Parental/Access Control features via poorly sanitized input in the `parent.sh` or `accessCtrl.sh` scripts. It bypasses the 28-byte payload limit by fetching a larger script via TFTP, enabling RCE as root.
Description
TP-Link TL-WR740N v4 Router (FW-Ver. 3.16.6 Build 130529 Rel.47286n) - Command Execution
Exploits (1)
This exploit leverages command injection in TP-Link TL-WR740N v4's Parental/Access Control features via poorly sanitized input in the `parent.sh` or `accessCtrl.sh` scripts. It bypasses the 28-byte payload limit by fetching a larger script via TFTP, enabling RCE as root.