Vulnerabilities > TP Link > TL Wr840N Firmware > 0.9.1.3.16

DATE CVE VULNERABILITY TITLE RISK
2021-11-13 CVE-2021-41653 Code Injection vulnerability in Tp-Link Tl-Wr840N Firmware
The PING function on the TP-Link TL-WR840N EU v5 router with firmware through TL-WR840N(EU)_V5_171211 is vulnerable to remote code execution via a crafted payload in an IP address input field.
network
low complexity
tp-link CWE-94
critical
9.8
2019-08-22 CVE-2019-15060 OS Command Injection vulnerability in Tp-Link Tl-Wr840N Firmware 0.9.1/0.9.1.4.16/0.9.13.16
The traceroute function on the TP-Link TL-WR840N v4 router with firmware through 0.9.1 3.16 is vulnerable to remote code execution via a crafted payload in an IP address input field.
network
low complexity
tp-link CWE-78
8.8
2019-05-24 CVE-2019-12195 Cross-site Scripting vulnerability in Tp-Link Tl-Wr840N Firmware 0.9.13.16
TP-Link TL-WR840N v5 00000005 devices allow XSS via the network name.
network
low complexity
tp-link CWE-79
4.8
2018-06-04 CVE-2018-11714 Session Fixation vulnerability in Tp-Link Tl-Wr840N Firmware and Tl-Wr841N Firmware
An issue was discovered on TP-Link TL-WR840N v5 00000005 0.9.1 3.16 v0001.0 Build 170608 Rel.58696n and TL-WR841N v13 00000013 0.9.1 4.16 v0001.0 Build 170622 Rel.64334n devices.
network
low complexity
tp-link CWE-384
critical
9.8