Lucene search
China National Vulnerability DatabaseCNVD-2021-61758HistoryAug 09, 2021 - 12:00 a.m.
Roxy-WI SQL Injection Vulnerability (CNVD-2021-61758)
2021-08-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
3
0.002 Low
EPSS
Percentile
56.7%
Roxy-WI is a web interface for managing Haproxy, Nginx, and Keepalived servers. SQL injection vulnerabilities exist in Roxy-WI 5.2.2.0 and earlier versions, and attackers can use check_login to extract a valid uuid to bypass authentication.
| CPE | Name | Operator | Version |
|---|---|---|---|
| roxy-wi roxy-wi <=5. | eq | 2.2.0 |
Related
prion
prion
Sql injection
2021-08-07 18:15:00
cvelist
cvelist
CVE-2021-38167
2021-08-07 18:00:36
nvd
nvd
CVE-2021-38167
2021-08-07 18:15:07
cve
cve
CVE-2021-38167
2021-08-07 18:15:07
osv
osv
CVE-2021-38167
2021-08-07 18:15:07