Skip to main content

Wr841N Firmware

2 CVEs product

Monthly

CVE-2025-25427 HIGH POC This Week

A stored cross-site scripting (XSS) vulnerability in the upnp.htm page of the web Interface in TP-Link WR841N v14/v14.6/v14.8 <= Build 241230 Rel. Rated high severity (CVSS 8.6), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

TP-Link XSS Wr841N Firmware
NVD GitHub
CVSS 4.0
8.6
EPSS
0.4%
CVE-2020-35575 CRITICAL POC Act Now

A password-disclosure issue in the web interface on certain TP-Link devices allows a remote attacker to get full administrative access to the web panel. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure TP-Link Wa901Nd Firmware Archer C5 Firmware Archer C7 Firmware +24
NVD
CVSS 3.1
9.8
EPSS
7.6%
EPSS 0% CVSS 8.6
HIGH POC This Week

A stored cross-site scripting (XSS) vulnerability in the upnp.htm page of the web Interface in TP-Link WR841N v14/v14.6/v14.8 <= Build 241230 Rel. Rated high severity (CVSS 8.6), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

TP-Link XSS Wr841N Firmware
NVD GitHub
EPSS 8% CVSS 9.8
CRITICAL POC Act Now

A password-disclosure issue in the web interface on certain TP-Link devices allows a remote attacker to get full administrative access to the web panel. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure TP-Link Wa901Nd Firmware +26
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy