Primary

Context

TP-Link Archer C1200 Clickjacking Vulnerability in Web Management Interface

Vulnerability

A clickjacking vulnerability has been identified in the TP-Link Archer C1200 router, affecting versions through 1.1.5. This vulnerability allows attackers to deceive users into performing unintended actions by overlaying UI elements or frames on top of the web management page. If a user is logged into the management interface and visits a malicious site, they could unknowingly interact with hidden elements, leading to unintended consequences.

Impact

Exploitation of this vulnerability could result in users unintentionally interacting with the router's web management interface, potentially allowing for unauthorized changes or actions.

Remediation

TP-Link advises users with affected devices to upgrade to a supported model that receives automatic updates. Instructions for this can be found on the TP-Link website.

Added: Jul 16, 2025, 8:16 PM

Updated: Jul 16, 2025, 8:16 PM

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

0.6

exploitability

6.0

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

0.6

exploitability

6.0

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

TP-Link Archer C1200 Clickjacking Vulnerability in Web Management Interface

Vulnerability

Impact

Remediation

Affected Products

TP-Link Archer C1200

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating