Primary

Context

GL-iNet GL-AR300M16 SQL Injection Vulnerability in add_group() Function

Vulnerability

A SQL injection vulnerability has been identified in the GL-iNet GL-AR300M16 router, specifically in version 4.3.11. The issue arises in the add_group() function, which improperly constructs and executes SQL queries using user-supplied input. This flaw allows attackers to execute arbitrary SQL operations by sending a crafted HTTP request.

Impact

Exploitation of this vulnerability allows for arbitrary SQL execution, which could be used to manipulate the database, extract sensitive information, or potentially execute further attacks on the device or network.

Reproduction

To reproduce this vulnerability, send a POST request to the router's RPC endpoint with a JSON-RPC payload that includes a crafted SQL injection in the 'group' parameter. The request must be made with an admin token cookie.

Added: Mar 12, 2026, 6:26 PM

Updated: Mar 12, 2026, 6:26 PM

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

3.1

exploitability

7.6

remediation

0.0

relevance

3.8

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

3.1

exploitability

7.6

remediation

0.0

relevance

3.8

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

GL-iNet GL-AR300M16 SQL Injection Vulnerability in add_group() Function

Vulnerability

Impact

Reproduction

Affected Products

GL-iNet GL-AR300M16

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating