An issue discovereed in EBYTE E880-IR01-V1.1 allows an malicious user to obtain sensitive information via crafted POST request to /cgi-bin/luci.
cdebyte e880-ir01_firmware 1.1