Researchers have discovered a backdoor in some TP-Link routers that has the router download and execute a file when a specific URL is called.