Shenzhen Yuner WDR201A WiFi Extender Authentication Bypass Vulnerability

An authentication bypass vulnerability has been identified in the web management interface of the Shenzhen Yuner WDR201A WiFi extender, specifically in hardware version V2.1 and firmware version LFMZX28040922V1.02. The vulnerability arises from a broken authentication mechanism that fails to properly validate sessions on the login page. This flaw allows attackers to bypass authentication and directly access restricted web application endpoints through forced browsing.

Impact

Exploitation of this vulnerability allows unauthorized users to gain administrative access to the web management interface, enabling them to perform various administrative functions such as updating firmware and changing passwords.

Reproduction

The vulnerability can be reproduced by accessing the web management interface and force browsing to the admin endpoints without cookies. The lack of proper session validation allows for authentication to be bypassed easily.