Roxy-WI is a web interface for managing Haproxy, Nginx, and Keepalived servers. SQL injection vulnerabilities exist in Roxy-WI 5.2.2.0 and earlier versions, and attackers can use check_login to extract a valid uuid to bypass authentication.
CPE | Name | Operator | Version |
---|---|---|---|
roxy-wi roxy-wi <=5. | eq | 2.2.0 |