Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormPurnendu ghoshPACKETSTORM:153027
HistoryMay 21, 2019 - 12:00 a.m.

TP-LINK TL-WR840N Cross Site Scripting

2019-05-2100:00:00
purnendu ghosh
packetstormsecurity.com
67

EPSS

0.001

Percentile

40.9%

JSON
`# Exploit Title: TL-WR840N v5 00000005  
  
# Date: 5/10/2019  
  
# Exploit Author: purnendu ghosh  
  
# Vendor Homepage: https://www.tp-link.com/  
  
# Software Link: https://www.amazon.in/TP-LINK-TL-WR840N-300Mbps-Wireless-External/dp/B01A0G1J7Q  
  
# Category: Hardware  
  
# Firmware Version:0.9.1 3.16 v0001.0 Build 171211 Rel.58800n  
  
# Hardware Version:TL-WR840N v5 00000005  
  
# Tested on: Windows 10  
  
# CVE :CVE-2019-12195.  
  
  
# Proof Of Concept:  
  
TP-Link TL-WR840N v5 00000005 devices allow XSS via the network name. The attacker must  
log into the router by breaking the password and going to the admin  
login page by THC-HYDRA to get the network name. With an XSS payload,  
the network name changed automatically and the internet connection was  
disconnected. All the users become disconnected from  
the internet.  
  
------------------------------------------  
  
[Additional Information]  
To ensure your network to be safe from Renaming and internet disconnection.  
  
------------------------------------------  
  
[Vulnerability Type]  
Cross Site Scripting (XSS)  
  
------------------------------------------  
  
[Vendor of Product]  
tp-link  
  
------------------------------------------  
  
[Affected Product Code Base]  
router - TL-WR840N v5 00000005  
  
------------------------------------------  
  
[Affected Component]  
Wi-Fi network configured through the router  
  
------------------------------------------  
  
[Attack Type]  
Remote  
  
------------------------------------------  
  
[Impact Denial of Service]  
true  
  
------------------------------------------  
  
[Impact Information Disclosure]  
true  
  
------------------------------------------  
  
[Attack Vectors]  
Logged in to the router by breaking the password and goes to the admin  
login page by THC-HYDRA and got the network name. Using Burp Suite  
professional version 1.7.32 captured the network name and selected XSS  
payload against the name and started attacking .as a result the  
network name changed automatically and internet connection was  
disconnected in the network. All the users become disconnected from  
internet.  
  
------------------------------------------  
  
[Discoverer]  
purnendu ghosh  
  
[Reference]  
https://www.tp-link.com/us/security  
`

Related

exploitpack 1
cve 1
zdt 1
prion 1
exploitdb 1
cvelist 1
nvd 1
exploitpack
exploitpack
TP-LINK TL-WR840N v5 00000005 - Cross-Site Scripting
2019-05-21 00:00:00
cve
cve
CVE-2019-12195
2019-05-24 16:29:00
zdt
zdt
TP-LINK TL-WR840N v5 00000005 - Cross-Site Scripting Vulnerability
2019-05-21 00:00:00
prion
prion
Cross site scripting
2019-05-24 16:29:00
exploitdb
exploitdb
TP-LINK TL-WR840N v5 00000005 - Cross-Site Scripting
2019-05-21 00:00:00
cvelist
cvelist
CVE-2019-12195
2019-05-24 15:24:45
nvd
nvd
CVE-2019-12195
2019-05-24 16:29:00

EPSS

0.001

Percentile

40.9%

JSON
Related for PACKETSTORM:153027
exploitpack1cve1zdt1prion1exploitdb1cvelist1nvd1