{"vulnerability": "cve-2026-11452", "sightings": [{"uuid": "3b4a18e3-1775-4dfb-836c-97714a18161a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11452", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnofn37ej62d", "content": "CVE-2026-11452 - GL.iNet GL-MT3000 SET_USER_PWD glc FUN_0042e200 command injection\nCVE ID : CVE-2026-11452\n \n Published : June 7, 2026, 4:16 a.m. | 16\u00a0minutes ago\n \n Description : A vulnerability has been found in GL.iNet GL-MT3000 up to 4.4.5. Affected is the function FUN_004...", "creation_timestamp": "2026-06-07T05:09:30.846293Z"}, {"uuid": "e0cd72d4-7dcb-4d7a-bdf2-c31081c83321", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11452", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116707297322046281", "content": "\ud83d\udd13 CVE-2026-11452 (MEDIUM): GL.iNet GL-MT3000 routers \u2264 4.4.5 are vulnerable to remote, unauthenticated command injection via /cgi-bin/glc. Patch to v4.8.1 to mitigate. Details: https://radar.offseq.com/threat/cve-2026-11452-command-injection-in-glinet-gl-mt30-7b600ced #OffSeq #Vuln #GLiNet #RouterSecurity", "creation_timestamp": "2026-06-07T06:00:32.652176Z"}, {"uuid": "1acd665a-fce0-4b7e-be91-841e2974e219", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11452", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mnoiiejvts2e", "content": "GL.iNet GL-MT3000 routers (fw \u2264 4.4.5) have a MEDIUM command injection flaw. Unauthenticated remote code execution possible \u2014 upgrade to 4.8.1 now! https://radar.offseq.com/threat/cve-2026-11452-command-injection-in-glinet-gl-mt30-7b600ced #OffSeq #GLiNet #Security", "creation_timestamp": "2026-06-07T06:00:34.852356Z"}]}