CVE-2025-67089 | GL-iNet GL-AXT1800 4.6.8 RPC plugins.install_package command injection

Inserito da Angelo Barbosa | Gen 8, 2026 | CVE

A vulnerability was found in GL-iNet GL-AXT1800 4.6.8 and classified as critical. The affected element is the function plugins.install_package of the component RPC. Such manipulation leads to command injection.

This vulnerability is listed as CVE-2025-67089. The attack may be performed from remote. There is no available exploit.

CVE-2025-67089 | GL-iNet GL-AXT1800 4.6.8 RPC plugins.install_package command injection

Post correlati

CVE-2024-23192 | Open-Xchange OX App Suite up to 7.10.6-rev40/8.20 RSS Feed cross site scripting (adv-2024-0001)

CVE-2024-1815 | Spectra Plugin up to 2.12.8 on WordPress Image Gallery cross site scripting

CVE-2025-1396 | WSO2 Identity Server Multi-Attribute Login information exposure

CVE-2024-32757 | Johnson Controls Illustra Essentials Gen 4 up to 4.01.02.10.5982 log file (icsa-24-179-06)