CVE-2023-46453

CRITICAL

GL.iNet 4.x - Authentication Bypass via SQL Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-46453. PoCs published by Daniele Linguaglossa.

AI-analyzed exploit summary The exploit demonstrates an authentication bypass in GL.iNet routers by leveraging improper input sanitization in the username field, allowing regex and SQL injection to bypass authentication checks. It retrieves a nonce, crafts a malicious username payload, and generates a valid MD5 hash to gain root access.

Description

Certain GL.iNet devices with 4.x firmware allow authentication bypass (resulting in administrative control of the device) via a username that is both a valid SQL statement and a valid regular expression. For example, this affects version 4.3.7 on GL-MT3000 GL-AR300M GL-B1300 GL-AX1800 GL-AR750S GL-MT2500 GL-AXT1800 GL-X3000 and GL-SFT1200.

Exploits (1)

exploitdb WORKING POC
by Daniele Linguaglossa · pythonwebappshardware
https://www.exploit-db.com/exploits/51865

The exploit demonstrates an authentication bypass in GL.iNet routers by leveraging improper input sanitization in the username field, allowing regex and SQL injection to bypass authentication checks. It retrieves a nonce, crafts a malicious username payload, and generates a valid MD5 hash to gain root access.

Classification
Working Poc 100%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: GL.iNet routers running firmware versions 4.x and up
No auth needed
Prerequisites: network access to the router's web interface
devstral-2 · analyzed May 08, 2026 Full analysis →

References (1)

Core 1

Scores

CVSS v3 9.8
EPSS 0.0076
EPSS Percentile 50.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact total

Details

CWE
CWE-89
Status published
Published May 08, 2026
Tracked Since May 08, 2026