Skip to content

Commit

Permalink
Create README.md
Browse files Browse the repository at this point in the history
  • Loading branch information
@alwaysroot
alwaysroot authored Feb 25, 2021
1 parent 73103a4 commit 678d072
Showing 1 changed file with 15 additions and 0 deletions.
15 changes: 15 additions & 0 deletions README.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,15 @@
TP-Link exploit gets conf.bin without authentication.

If any attacker sends Referer Header with its request and sets Referer:
http://192.168.0.1/mainFrame.htm its no authentication required and an
attacker can do router's action without authentication.
below are some of few examples you can see. But the attacker can do mostly
all of the action on a router without Authentication.

Vulnerable devices:

*TL-WR840N

*TL-WR841N

*WL-WA850RE

0 comments on commit 678d072

Please sign in to comment.