Lucene search
+L

6 matches found

attackerkb
attackerkb
added 2026/05/08 12:0 a.m.8 views

CVE-2023-46453

Certain GL.iNet devices with 4.x firmware allow authentication bypass resulting in administrative control of the device via a username that is both a valid SQL statement and a valid regular expression. For example, this affects version 4.3.7 on GL-MT3000 GL-AR300M GL-B1300 GL-AX1800 GL-AR750S...

5.9AI score0.00764EPSS
Exploits3References2
ptsecurity
ptsecurity
added 2023/12/27 12:0 a.m.8 views

PT-2023-8749 · Gl.Inet · Gl-Inet Mt1300 +8

Name of the Vulnerable Software and Affected Versions: GL.iNet A1300 versions 4.4.6 GL.iNet AX1800 versions 4.4.6 GL.iNet AXT1800 versions 4.4.6 GL.iNet MT3000 versions 4.4.6 GL.iNet MT2500 versions 4.4.6 GL.iNet MT6000 versions 4.5.0 GL.iNet MT1300 versions 4.3.7 GL.iNet MT300N-V2 versions 4.3.7...

7.8CVSS9.7AI score0.09123EPSS
Exploits4References15
osv
osv
added 2023/12/12 3:15 p.m.3 views

CVE-2023-46455

In GL.iNET GL-AR300M routers with firmware v4.3.7 it is possible to write arbitrary files through a path traversal attack in the OpenVPN client file upload functionality...

7.5CVSS5.9AI score0.46966EPSS
Exploits4References2
osv
osv
added 2023/12/12 3:15 p.m.6 views

CVE-2023-46456

In GL.iNET GL-AR300M routers with firmware 3.216 it is possible to inject arbitrary shell commands through the OpenVPN client file upload functionality...

9.8CVSS5.9AI score0.24725EPSS
Exploits4References2
attackerkb
attackerkb
added 2023/12/12 3:15 p.m.5 views

CVE-2023-46454

In GL.iNET GL-AR300M routers with firmware v4.3.7, it is possible to inject arbitrary shell commands through a crafted package name in the package information functionality...

9.8CVSS5.9AI score0.23466EPSS
Exploits4References2
ptsecurity
ptsecurity
added 2023/12/07 12:0 a.m.5 views

PT-2023-30033 · Gl.Inet · Gl-Ar300M

Name of the Vulnerable Software and Affected Versions: GL.iNET GL-AR300M version 4.3.7 Description: The issue allows an attacker to write arbitrary files through a path traversal attack in the OpenVPN client file upload functionality. This can potentially lead to unauthorized access and...

7.5CVSS6.7AI score0.46966EPSS
Exploits4References9
Rows per page
Query Builder