CVE-2025-29649 Information

Description

SQL Injection vulnerability exists in the TP-Link TL-WR840N router s login dashboard (version 1.0) allowing an unauthenticated attacker to inject malicious SQL statements via the username and password fields.

Reference

https://github.com/TheVeteran1/Vulnerability-Research/blob/main/CVE-2025-29649