Tp-Link: >> Tl-Wr740nd Firmware Security Vulnerabilities
On TP-Link TL-WR740N v4 and TL-WR740ND v4 devices, an attacker with access to the admin panel can inject HTML code and change the HTML context of the target pages and stations in the access-control settings via targets_lists_name or hosts_lists_name. The vulnerability can also be exploited through a CSRF, requiring no authentication as an administrator.
CVSS Score
4.8
EPSS Score
0.002
Published
2020-06-23