CVE-2015-6811

2015-09-04T15:59:00
ID CVE-2015-6811
Type cve
Reporter cve@mitre.org
Modified 2019-06-24T17:58:00

Description

SQL injection vulnerability in the Sophos Cyberoam CR500iNG-XP firewall appliance with CyberoamOS 10.6.2 MR-1 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter to login.xml.