Lucene search
+L

49 matches found

redhatcve
redhatcve
added 2026/03/26 3:14 p.m.6 views

CVE-2026-26795

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the module parameter in the M.getsystemlog function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

9.8CVSS6.1AI score0.02488EPSS
Exploits1References1
redhatcve
redhatcve
added 2026/03/26 3:14 p.m.6 views

CVE-2026-26791

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the string port parameter in the enableechoserver function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

9.8CVSS6.1AI score0.02488EPSS
Exploits1References1
redhatcve
redhatcve
added 2026/03/26 3:14 p.m.4 views

CVE-2026-26793

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the setconfig function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

9.8CVSS6.1AI score0.02266EPSS
Exploits1References1
redhatcve
redhatcve
added 2026/03/26 3:14 p.m.4 views

CVE-2026-26794

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a SQL injection vulnerability via the addgroup function. This vulnerability allows attackers to execute arbitrary SQL database operations via a crafted HTTP request...

8.8CVSS6.2AI score0.00453EPSS
Exploits1References1
redhatcve
redhatcve
added 2026/03/26 3:14 p.m.5 views

CVE-2026-26792

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain multiple command injection vulnerabilities in the setupgrade function via the modemurl, targetversion, currentversion, firmwareupload, hashtype, hashvalue, and upgradetype parameters. These vulnerabilities allow attackers to execute arbitrary...

9.8CVSS6.1AI score0.02776EPSS
Exploits1References1
euvd
euvd
added 2026/03/12 9:34 p.m.3 views

EUVD-2026-11659

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the setconfig function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

9.8CVSS6AI score0.02266EPSS
Exploits1References2
osv
osv
added 2026/03/12 7:16 p.m.4 views

CVE-2026-26793

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the setconfig function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

9.8CVSS6.1AI score0.02266EPSS
Exploits1References1
nvd
nvd
added 2026/03/12 7:16 p.m.10 views

CVE-2026-26793

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the setconfig function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

9.8CVSS0.02266EPSS
Exploits1References1
euvd
euvd
added 2026/03/12 6:30 p.m.6 views

EUVD-2026-11625

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a SQL injection vulnerability via the addgroup function. This vulnerability allows attackers to execute arbitrary SQL database operations via a crafted HTTP request...

6AI score0.00453EPSS
Exploits1References2
euvd
euvd
added 2026/03/12 6:30 p.m.7 views

EUVD-2026-11621

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the string port parameter in the enableechoserver function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

6AI score0.02488EPSS
Exploits1References2
osv
osv
added 2026/03/12 6:16 p.m.4 views

CVE-2026-26795

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the module parameter in the M.getsystemlog function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

9.8CVSS6.1AI score0.02488EPSS
Exploits1References1
nvd
nvd
added 2026/03/12 6:16 p.m.14 views

CVE-2026-26795

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the module parameter in the M.getsystemlog function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

9.8CVSS0.02488EPSS
Exploits1References1
osv
osv
added 2026/03/12 6:16 p.m.6 views

CVE-2026-26794

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a SQL injection vulnerability via the addgroup function. This vulnerability allows attackers to execute arbitrary SQL database operations via a crafted HTTP request...

8.8CVSS6.1AI score0.00453EPSS
Exploits1References1
osv
osv
added 2026/03/12 6:16 p.m.5 views

CVE-2026-26791

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the string port parameter in the enableechoserver function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

9.8CVSS6.1AI score0.02488EPSS
Exploits1References1
nvd
nvd
added 2026/03/12 6:16 p.m.8 views

CVE-2026-26791

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the string port parameter in the enableechoserver function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

9.8CVSS0.02488EPSS
Exploits1References1
nvd
nvd
added 2026/03/12 6:16 p.m.12 views

CVE-2026-26792

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain multiple command injection vulnerabilities in the setupgrade function via the modemurl, targetversion, currentversion, firmwareupload, hashtype, hashvalue, and upgradetype parameters. These vulnerabilities allow attackers to execute arbitrary...

9.8CVSS0.02776EPSS
Exploits1References1
nvd
nvd
added 2026/03/12 6:16 p.m.13 views

CVE-2026-26794

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a SQL injection vulnerability via the addgroup function. This vulnerability allows attackers to execute arbitrary SQL database operations via a crafted HTTP request...

8.8CVSS0.00453EPSS
Exploits1References1
cnnvd
cnnvd
added 2026/03/12 12:0 a.m.6 views

GL-iNet GL-AR300M16 安全漏洞

GL-iNet GL-AR300M16 is a portable mini router produced by the Chinese company GL-iNet. The version GL-iNet GL-AR300M16 v4.3.11 contains a security vulnerability. This vulnerability stems from the module parameter in the M.getsystemlog function, which allows for command injection, potentially...

9.8CVSS6AI score0.02488EPSS
Exploits1References1
attackerkb
attackerkb
added 2026/03/12 12:0 a.m.2 views

CVE-2026-26794

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a SQL injection vulnerability via the addgroup function. This vulnerability allows attackers to execute arbitrary SQL database operations via a crafted HTTP request...

6AI score0.00453EPSS
Exploits1References2
attackerkb
attackerkb
added 2026/03/12 12:0 a.m.2 views

CVE-2026-26791

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the string port parameter in the enableechoserver function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

6AI score0.02488EPSS
Exploits1References2
Rows per page
Query Builder