135 matches found
CVE-2024-3455 Netentsec NS-ASG Application Security Gateway add_postlogin.php sql injection
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/addpostlogin.php. The manipulation of the argument SingleLoginId leads to sql injection. The attack can b...
Netentsec NS-ASG Application Security Gateway SQL注入漏洞
NetentSec NS-ASG Application Security Gateway is an application security gateway from China NetentSec. A SQL injection vulnerability exists in Netentsec NS-ASG Application Security Gateway version 6.3, which originates from a SQL injection vulnerability in the parameter GroupId in the file...
Netentsec NS-ASG Application Security Gateway SQL注入漏洞
NetentSec NS-ASG Application Security Gateway is an application security gateway from China NetentSec. A SQL injection vulnerability exists in Netentsec NS-ASG Application Security Gateway version 6.3, which originates from an SQL injection vulnerability in the parameter SingleLoginId in the file...
PT-2024-25993 · Netentsec · Netentsec Ns-Asg Application Security Gateway
Name of the Vulnerable Software and Affected Versions: Netentsec NS-ASG Application Security Gateway version 6.3 Description: A critical vulnerability was found in the Netentsec NS-ASG Application Security Gateway. This issue affects the file /admin/add ikev2.php and is caused by the manipulation...
Netentsec NS-ASG Application Security Gateway SQL注入漏洞
NetentSec NS-ASG Application Security Gateway is an application security gateway from China NetentSec. A SQL injection vulnerability exists in Netentsec NS-ASG Application Security Gateway version 6.3, which originates from a SQL injection vulnerability in the parameter GroupId in the file...
CVE-2024-3041
A vulnerability has been found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. This vulnerability affects unknown code of the file /protocol/log/listloginfo.php. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2024-3041 Netentsec NS-ASG Application Security Gateway listloginfo.php sql injection
A vulnerability has been found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. This vulnerability affects unknown code of the file /protocol/log/listloginfo.php. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2024-3041 Netentsec NS-ASG Application Security Gateway listloginfo.php sql injection
A vulnerability has been found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. This vulnerability affects unknown code of the file /protocol/log/listloginfo.php. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2024-3040 Netentsec NS-ASG Application Security Gateway list_crl_conf sql injection
A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /admin/listcrlconf. The manipulation of the argument CRLId leads to sql injection. It is possible to initiate the attack remotely. The exploi...
CVE-2024-3040
CVE-2024-3040 concerns Netentsec NS-ASG Application Security Gateway v6.3. The vulnerability affects the file path /admin/list_crl_conf, where manipulation of the CRLId parameter leads to an SQL injection. Exploitation can be performed remotely, and public disclosure of the exploit is noted. Seve...
Netentsec NS-ASG Application Security Gateway SQL注入漏洞
Netentsec NS-ASG Application Security Gateway is an application security gateway from China Netentsec. A SQL injection vulnerability exists in Netentsec NS-ASG Application Security Gateway version 6.3, which originates from a SQL injection vulnerability in file /protocol/log/listloginfo.php...
CVE-2024-28521
SQL Injection vulnerability in Netcome NS-ASG Application Security Gateway v.6.3.1 allows a local attacker to execute arbitrary code and obtain sensitive information via a crafted script to the loginid parameter of the /singlelogin.php component...
PT-2024-22452 · Netcome · Netcome Ns-Asg Application Security Gateway
Name of the Vulnerable Software and Affected Versions: Netcome NS-ASG Application Security Gateway version 6.3.1 Description: The issue allows a local attacker to execute arbitrary code and obtain sensitive information via a crafted script to the loginid parameter of the "/singlelogin.php"...
CVE-2024-28521
CVE-2024-28521 affects Netcome NS-ASG Application Security Gateway v6.3.1. A SQL injection in the loginid parameter of the /singlelogin.php component can allow a local attacker to execute arbitrary code and access sensitive information. The published sources consistently reference the same core f...
Netentsec NS-ASG Application Security Gateway SQL Injection Vulnerability
Netentsec NS-ASG Application Security Gateway is an application security gateway from China Netentsec. A SQL injection vulnerability exists in Netentsec NS-ASG Application Security Gateway version 6.3, which originates from an SQL injection vulnerability in the messagecontent parameter of file...
CVE-2024-2649 Netentsec NS-ASG Application Security Gateway deleteonlineuser.php sql injection
A vulnerability has been found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /protocol/iscdevicestatus/deleteonlineuser.php. The manipulation of the argument messagecontent leads to sql...
CVE-2024-2649 Netentsec NS-ASG Application Security Gateway deleteonlineuser.php sql injection
A vulnerability has been found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /protocol/iscdevicestatus/deleteonlineuser.php. The manipulation of the argument messagecontent leads to sql...
CVE-2024-2649
Netentsec NS-ASG Application Security Gateway 6.3 is affected by CVE-2024-2649 due to SQL injection in the /protocol/iscdevicestatus/deleteonlineuser.php endpoint when manipulating the messagecontent parameter. The vulnerability is exploitable remotely, and multiple sources indicate the exploit/p...
CVE-2024-2647
A vulnerability, which was classified as critical, has been found in Netentsec NS-ASG Application Security Gateway 6.3. This issue affects some unknown processing of the file /admin/singlelogin.php. The manipulation of the argument loginId leads to sql injection. The attack may be initiated...
CVE-2024-2645
A vulnerability classified as problematic has been found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /vpnweb/resetpwd/resetpwd.php. The manipulation of the argument UserId leads to improper neutralization of data within xpath expressions. It is...