CVE-2015-6811

2015-09-04T11:59:09
ID CVE-2015-6811
Type cve
Reporter NVD
Modified 2015-09-04T14:59:11

Description

SQL injection vulnerability in the Sophos Cyberoam CR500iNG-XP firewall appliance with CyberoamOS 10.6.2 MR-1 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter to login.xml.