CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

456 matches found

Debian CVE•added 2026/05/05 2:49 p.m.•9 views

CVE-2026-5766

An issue was discovered in 6.0 before 6.0.5 and 5.2 before 5.2.14. ASGI requests with a missing or understated Content-Length header can bypass the FILEUPLOADMAXMEMORYSIZE limit, potentially loading large files into memory and causing service degradation. As a reminder, Django expects a limit to ...

6.3CVSS5.8AI score0.00423EPSS

Exploits0

RedhatCVE•added 2026/01/09 12:10 p.m.•7 views

CVE-2018-18370

The ASG/ProxySG FTP proxy WebFTP mode allows intercepting FTP connections where a user accesses an FTP server via a ftp:// URL in a web browser. A stored cross-site scripting XSS vulnerability in the WebFTP mode allows a remote attacker to inject malicious JavaScript code in ASG/ProxySG's web...

6.1CVSS5.6AI score0.00772EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 10:17 a.m.•9 views

CVE-2019-18375

The ASG and ProxySG management consoles are susceptible to a session hijacking vulnerability. A remote attacker, with access to the appliance management interface, can hijack the session of a currently logged-in user and access the management console...

6.5CVSS7AI score0.01231EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:15 a.m.•10 views

CVE-2024-2021

A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. Affected is an unknown function of the file /admin/listlocaluser.php. The manipulation of the argument ResId leads to sql injection. It is possible to launch the attack remotely. Th...

9.8CVSS9.8AI score0.00741EPSS

Exploits1References1

RedhatCVE•added 2026/01/07 9:15 a.m.•8 views

CVE-2024-2649

A vulnerability has been found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /protocol/iscdevicestatus/deleteonlineuser.php. The manipulation of the argument messagecontent leads to sql...

9.8CVSS9.8AI score0.00838EPSS

Exploits1References1

RedhatCVE•added 2026/01/07 9:14 a.m.•12 views

CVE-2024-2645

A vulnerability classified as problematic has been found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /vpnweb/resetpwd/resetpwd.php. The manipulation of the argument UserId leads to improper neutralization of data within xpath expressions. It is...

5.3CVSS5.4AI score0.00731EPSS

Exploits1References1

RedhatCVE•added 2026/01/07 9:14 a.m.•8 views

CVE-2024-2022

A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/listipAddressPolicy.php. The manipulation of the argument GroupId leads to sql injection. The attack can ...

9.8CVSS9.7AI score0.08537EPSS

Exploits1References1

RedhatCVE•added 2026/01/07 9:13 a.m.•11 views

CVE-2024-2646

A vulnerability classified as critical was found in Netentsec NS-ASG Application Security Gateway 6.3. This vulnerability affects unknown code of the file /vpnweb/index.php?para=index. The manipulation of the argument checkVirtualSiteId leads to sql injection. The attack can be initiated remotely...

9.8CVSS7.5AI score0.00812EPSS

Exploits1References1