📦 Gl Ax1800 Firmware

This CVE describes an NGINX authentication bypass vulnerability in GL.iNet router firmware that allows unauthenticated attackers to execute arbitrary commands. The flaw exists in Lua string pattern ma...

This vulnerability allows attackers to invoke the add_user interface in the system module on GL.iNet devices to gain root privileges. It affects multiple GL.iNet router models running firmware version...

This CVE describes an unauthenticated remote code execution vulnerability in GL.iNet AX1800 routers. Attackers can execute arbitrary code without authentication by sending a crafted script to the gl_n...

This vulnerability allows remote attackers to execute arbitrary code on GL.iNet AX1800 routers by exploiting insecure permissions in the file sharing function. Attackers can read arbitrary files and p...

This vulnerability allows attackers to install arbitrary software on GL.iNet devices by bypassing client-side package verification. It enables remote code execution through the software installation f...

This vulnerability allows attackers who steal the AdminToken cookie to upload malicious crontab files to GL.iNet devices, leading to arbitrary code execution. It affects multiple GL.iNet router models...

This CVE describes a shell injection vulnerability in multiple GL.iNet router models that allows local attackers to execute arbitrary code via specific API functions. Attackers can exploit functions i...

This vulnerability in GL.iNet devices exposes Wi-Fi configuration details including SSID and encryption keys through an API endpoint. Attackers can retrieve Wi-Fi credentials, potentially gaining unau...

This CVE describes a command injection vulnerability in GL.iNet devices that allows attackers to create empty files anywhere on the filesystem. The vulnerability affects GL.iNet devices running firmwa...