EIP-2026-102077

PRE-CVE

TP-Link WR740N/WR740ND - Multiple Cross-Site Request Forgery Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102077. PoCs published by Samandeep Singh.

AI-analyzed exploit summary This exploit demonstrates multiple CSRF vulnerabilities in TP-Link WR740N routers, allowing attackers to change wireless passwords, reboot the router, or reset it to factory defaults by bypassing the HTTP-REFERER check via a crafted GET request.

Description

TP-Link WR740N/WR740ND - Multiple Cross-Site Request Forgery Vulnerabilities

Exploits (1)

exploitdb WORKING POC

by Samandeep Singh · textwebappshardware

https://www.exploit-db.com/exploits/29802

View Code ZIP pw:eip

This exploit demonstrates multiple CSRF vulnerabilities in TP-Link WR740N routers, allowing attackers to change wireless passwords, reboot the router, or reset it to factory defaults by bypassing the HTTP-REFERER check via a crafted GET request.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: TP-Link WR740N/WR740ND firmware version 3.16.6 Build 130529 Rel.47286n and below

No auth needed

Prerequisites: Victim must be authenticated to the router's web interface · Victim must visit a malicious webpage or link

MITRE ATT&CK

T1189 - Drive-by Compromise T1185 - Browser Session Hijacking

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026