A vulnerability is in the 'Tftpd32.ini' page of the Wavlink-WiFi-Repeater,Firmware package version RPTA2-77W.M4300.01.GD.2017Sep19,By constructing this link, you can get the ftp configuration file.
Unauthorized users can obtain the key information of the router by visiting:
http://xxx.xxx.xxx.xxx/Tftpd32.ini
Wavlink-WiFi-Repeater
The ftp configuration file does not have reasonable access rights settings.
Penwei.Huang


