SQL Injection Vulnerability in TP-Link EAP120 Router
CVE-2025-29648

Currently unrated

Key Information:

Vendor: TP-Link
Status: EAP120 Router
Vendor: CVE Published:; 16 April 2025

What is CVE-2025-29648?

An SQL Injection vulnerability exists in the login dashboard of the TP-Link EAP120 router (version 1.0). This flaw allows unauthenticated attackers to exploit the router's login fields, injecting harmful SQL statements. As a result, attackers may gain unauthorized access to critical data, jeopardizing the integrity and confidentiality of the router's settings and connected devices.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://github.com/TheVeteran1/Vulnerability-Research/blo...

Timeline

Vulnerability published
Apr 16, 2025

JSON

TP-Link

What is CVE-2025-29648?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.