Lucene search
K

10 matches found

NVD
NVD
added 2026/03/12 7:16 p.m.10 views

CVE-2026-26793

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the setconfig function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

9.8CVSS0.02266EPSS
Exploits1References1
OSV
OSV
added 2026/03/12 6:16 p.m.4 views

CVE-2026-26795

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the module parameter in the M.getsystemlog function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

9.8CVSS6.1AI score0.02488EPSS
Exploits1References1
NVD
NVD
added 2026/03/12 6:16 p.m.8 views

CVE-2026-26791

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the string port parameter in the enableechoserver function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

9.8CVSS0.02488EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/03/12 12:0 a.m.6 views

GL-iNet GL-AR300M16 安全漏洞

GL-iNet GL-AR300M16 is a portable mini router produced by the Chinese company GL-iNet. The version GL-iNet GL-AR300M16 v4.3.11 contains a security vulnerability. This vulnerability stems from the module parameter in the M.getsystemlog function, which allows for command injection, potentially...

9.8CVSS6AI score0.02488EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/03/12 12:0 a.m.1 views

CVE-2026-26792

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain multiple command injection vulnerabilities in the setupgrade function via the modemurl, targetversion, currentversion, firmwareupload, hashtype, hashvalue, and upgradetype parameters. These vulnerabilities allow attackers to execute arbitrary...

6AI score0.02776EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/12 12:0 a.m.25 views

CVE-2026-26791

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the string port parameter in the enableechoserver function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

0.02488EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/03/12 12:0 a.m.6 views

PT-2026-25027

🔴 CVE-2026-26795 - Critical GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the module parameter in the M.get system log function. This vulnerability allows attackers to e... https://t.co/NCxeIgOxEq https://t.co/P5rgFdajLA...

9.8CVSS5.8AI score0.02488EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2026/03/12 12:0 a.m.7 views

CVE-2026-26793

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the setconfig function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

6AI score0.02266EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/03/12 12:0 a.m.2 views

CVE-2026-26793

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the setconfig function. This vulnerability allows attackers to execute arbitrary commands via a crafted input...

9.8CVSS6AI score0.02266EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/12 12:0 a.m.40 views

CVE-2026-26794

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a SQL injection vulnerability via the addgroup function. This vulnerability allows attackers to execute arbitrary SQL database operations via a crafted HTTP request...

0.00453EPSS
Exploits1References1
Rows per page
Query Builder