Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-2188 PoC — TP-LINK AX50 跨站脚本漏洞

Source
https://github.com/hacefresko/CVE-2024-2188
Associated Vulnerability
Title:TP-LINK AX50 跨站脚本漏洞 (CVE-2024-2188)
Description:TP-LINK AX50是中国普联(TP-LINK)公司的一款路由器设备。 TP-LINK AX50 1.0.11 build 2022052版本存在跨站脚本漏洞。攻击者利用该漏洞通过 SOAP 请求创建端口映射规则,并在该规则中存储恶意 JavaScript 载荷。
Description
Exploit for stored XSS vulnerability found in the TP-Link Archer AX50 router.
Readme
# CVE-2024-2188

CVE-2024-2188 is a Stored XSS vulnerability in the TP-Link Archer AX50 router, affecting firmware version 1.0.11 build 2022052.
It occurs in the UPnP service, where command `AddPortMapping` allows attackers to create a new `PortMapping` entry without sanitizing user input for the `description` field.
This allows the attacker to inject HTML entities with malicious JavaScript that will be executed when visiting the tha UPnP tab in the NAT Forwarding admin page (`Advanced > NAT Forwarding > UPnP`).
If an authenticated user triggers the XSS, it allows an unatuthenticated attacker to perform actions as that authenticated user, potentially allowing further compromise of the device
File Snapshot

 [4.0K]  /data/pocs/4380785eafef3ea001ea7bf99f5c617bd9ff30aa
├── [1.9K]  PoC.py
└── [ 701]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.