347 matches found
CVE-2021-27274
This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System 1.6.0.26. Authentication is not required to exploit this vulnerability. The specific flaw exists within the MFileUploadController class. The issue results fr...
NETGEAR ProSafe Network Management System 300 Authenticated File Download
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NETGEAR ProSafe Network Management System 300 Authenticated File Download', 'Description' = %q Netgear's ProSafe NMS300 is a network management...
CVE-2024-6813
NETGEAR ProSAFE Network Management System getSortString SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System. Authentication is required to exploit this...
CVE-2024-6814
NETGEAR ProSAFE Network Management System getFilterString SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System. Authentication is required to exploit this...
CVE-2024-6814
NETGEAR ProSAFE Network Management System getFilterString SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System. Authentication is required to exploit this...
CVE-2024-6813
NETGEAR ProSAFE Network Management System getSortString SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System. Authentication is required to exploit this...
CVE-2024-6814
CVE-2024-6814 affects NETGEAR ProSAFE Network Management System due to a flaw in the getFilterString method where user input is not properly validated for SQL query construction, enabling remote code execution. An attacker who authenticates can leverage this to execute code in the SYSTEM context....
CVE-2024-6814 NETGEAR ProSAFE Network Management System getFilterString SQL Injection Remote Code Execution Vulnerability
NETGEAR ProSAFE Network Management System getFilterString SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System. Authentication is required to exploit this...
EUVD-2024-47838
NETGEAR ProSAFE Network Management System getFilterString SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System. Authentication is required to exploit this...
CVE-2024-6813 NETGEAR ProSAFE Network Management System getSortString SQL Injection Remote Code Execution Vulnerability
NETGEAR ProSAFE Network Management System getSortString SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System. Authentication is required to exploit this...
CVE-2024-6813
CVE-2024-6813 affects NETGEAR ProSAFE Network Management System. The vulnerability is in the getSortString method, where insufficient validation of a user-supplied string used to build SQL queries permits SQL Injection that can lead to remote code execution in the context of SYSTEM. Exploitation ...
CVE-2024-6813 NETGEAR ProSAFE Network Management System getSortString SQL Injection Remote Code Execution Vulnerability
NETGEAR ProSAFE Network Management System getSortString SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System. Authentication is required to exploit this...
NETGEAR ProSAFE Elevation of Privilege Vulnerability
NETGEAR ProSAFE is a network management system from NETGEAR. An elevation of privilege vulnerability exists in NETGEAR ProSAFE, which can be exploited by an attacker to elevate privileges...
NETGEAR ProSAFE Network Management System SQL Injection Vulnerability (CNVD-2025-11171)
NETGEAR ProSAFE Network Management System is a network management system. The NETGEAR ProSAFE Network Management System suffers from a SQL injection vulnerability that can be exploited by an attacker to submit a specially crafted SQL request to manipulate a database, obtain sensitive information,...
NETGEAR ProSAFE Network Management System SQL Injection Vulnerability
NETGEAR ProSAFE Network Management System is a network management system. The NETGEAR ProSAFE Network Management System suffers from a SQL injection vulnerability that can be exploited by an attacker to submit a specially crafted SQL request to manipulate a database, obtain sensitive information,...
The vulnerability of the getFilterString method in the microprogramming software for network devices of the ProSAFE Network Management System (NMS300) allows a perpetrator to execute arbitrary code.
The vulnerability of the getFilterString method in the ProSAFE Network Management System NMS300 microprogramming device lies in the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...
The vulnerability of the getSortString method in the microprogramming software for network devices in the ProSAFE Network Management System (NMS300) allows a perpetrator to execute arbitrary code.
The vulnerability of the getSortString method in the microprogramming software for network devices, the ProSAFE Network Management System NMS300, is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker operating remotely to execu...
NETGEAR ProSAFE Directory Traversal Vulnerability
NETGEAR ProSAFE is a network management system from NETGEAR. NETGEAR ProSAFE suffers from a directory traversal vulnerability that can be exploited by an attacker to execute arbitrary code...
NETGEAR ProSAFE Arbitrary File Upload Vulnerability (CNVD-2024-33897)
NETGEAR ProSAFE is a network management system from NETGEAR. An arbitrary file upload vulnerability exists in NETGEAR ProSAFE, which can be exploited by an attacker to execute arbitrary code...
NETGEAR ProSAFE Network Management System getFilterString SQL Injection Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System. Authentication is required to exploit this vulnerability. The specific flaw exists within the getFilterString method. The issue results from the lack of...