CVE-2024-30862

netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /3g/index.php...

NetentSec NS-ASG 安全漏洞

NetentSec NS-ASG is an application security gateway from China NetentSec. A security vulnerability exists in NetentSec NS-ASG version 6.3, which originates from an SQL injection vulnerability in the /admin/addgetlogin.php file...

PT-2024-23650 · Netentsec · Netentsec Ns-Asg

Name of the Vulnerable Software and Affected Versions: netentsec NS-ASG version 6.3 Description: The issue is related to SQL Injection. It can be exploited via the "/include/authrp.php" API endpoint. Recommendations: For netentsec NS-ASG version 6.3, consider restricting access to the...

PT-2024-23642 · Netentsec · Netentsec Ns-Asg

Name of the Vulnerable Software and Affected Versions: netentsec NS-ASG version 6.3 Description: The issue concerns SQL Injection, which can be exploited via the "/admin/config ISCGroupTimePolicy.php" API endpoint. Recommendations: For netentsec NS-ASG version 6.3, consider restricting access to...

PT-2024-23636 · Netentsec · Netentsec Ns-Asg

Name of the Vulnerable Software and Affected Versions: netentsec NS-ASG version 6.3 Description: The issue concerns a SQL injection vulnerability. It can be exploited via the "/admin/config ISCGroupSSLCert.php" API endpoint. This could potentially allow for remote attacks. Recommendations: For...

PT-2024-23638 · Netentsec · Netentsec Ns-Asg

Name of the Vulnerable Software and Affected Versions: netentsec NS-ASG version 6.3 Description: The issue is related to SQL Injection. It can be exploited via the "/admin/export excel user.php" API endpoint. Recommendations: For netentsec NS-ASG version 6.3, consider restricting access to the...

PT-2024-23641 · Netentsec · Netentsec Ns-Asg

Name of the Vulnerable Software and Affected Versions: netentsec NS-ASG version 6.3 Description: The issue is related to SQL Injection, which can be exploited via the "/WebPages/history.php" API endpoint. This allows for potential unauthorized access or manipulation of data. Recommendations: For...

PT-2024-23644 · Netentsec · Netentsec Ns-Asg

Name of the Vulnerable Software and Affected Versions: netentsec NS-ASG version 6.3 Description: The issue is related to SQL Injection. It can be exploited via the "/3g/menu.php" API endpoint. Recommendations: For netentsec NS-ASG version 6.3, consider restricting access to the "/3g/menu.php"...

PT-2024-23646 · Netentsec · Netentsec Ns-Asg

Name of the Vulnerable Software and Affected Versions: netentsec NS-ASG version 6.3 Description: The issue is related to SQL Injection. It can be exploited via the "/admin/add getlogin.php" API endpoint. Recommendations: For netentsec NS-ASG version 6.3, consider restricting access to the...

PT-2024-23640 · Netentsec · Netentsec Ns-Asg

Name of the Vulnerable Software and Affected Versions: netentsec NS-ASG version 6.3 Description: The issue is related to SQL Injection. It can be exploited via the "/3g/index.php" API endpoint. Recommendations: For netentsec NS-ASG version 6.3, consider restricting access to the "/3g/index.php"...

CVE-2024-30866

netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /3g/menu.php...

CVE-2024-30868

netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/addgetlogin.php...

CVE-2024-30872

netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /include/authrp.php...

CVE-2024-3041

A vulnerability has been found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. This vulnerability affects unknown code of the file /protocol/log/listloginfo.php. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2024-3041

A vulnerability has been found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. This vulnerability affects unknown code of the file /protocol/log/listloginfo.php. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2024-3040

A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /admin/listcrlconf. The manipulation of the argument CRLId leads to sql injection. It is possible to initiate the attack remotely. The exploi...

CVE-2024-3040

A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /admin/listcrlconf. The manipulation of the argument CRLId leads to sql injection. It is possible to initiate the attack remotely. The exploi...

CVE-2024-3041 Netentsec NS-ASG Application Security Gateway listloginfo.php sql injection

A vulnerability has been found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. This vulnerability affects unknown code of the file /protocol/log/listloginfo.php. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2024-3041 Netentsec NS-ASG Application Security Gateway listloginfo.php sql injection

A vulnerability has been found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. This vulnerability affects unknown code of the file /protocol/log/listloginfo.php. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2024-3040

CVE-2024-3040 concerns Netentsec NS-ASG Application Security Gateway v6.3. The vulnerability affects the file path /admin/list_crl_conf, where manipulation of the CRLId parameter leads to an SQL injection. Exploitation can be performed remotely, and public disclosure of the exploit is noted. Seve...