Dell SonicWALL Scrutinizer SQL Injection (CVE-2012-2962)

An SQL injection vulnerability has been reported in Dell SonicWALL Scrutinizer...

Scrutinizer < 9.5.2 d4d/statusFilter.php q Parameter SQL Injection

The version of Scrutinizer installed on the remote web server is affected by a SQL injection vulnerability in the q parameter of the 'd4d/statusFilter.php' script. An unauthenticated remote attacker can leverage this issue to manipulate database queries, leading to disclosure of sensitive...

Dell SonicWALL Scrutinizer 9 - SQL Injection (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "Dell SonicWALL...

Dell SonicWALL Scrutinizer 9 SQL Injection

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "Dell SonicWALL...

Dell SonicWALL (Plixer) Scrutinizer 9 SQL Injection

This module exploits a vulnerability found in Dell SonicWall Scrutinizer. While handling the 'q' parameter, the PHP application does not properly filter the user-supplied data, which can be manipulated to inject SQL commands, and then gain remote code execution. Please note that authentication is...

CVE-2012-2962

SQL injection vulnerability in d4d/statusFilter.php in Plixer Scrutinizer aka Dell SonicWALL Scrutinizer before 9.5.2 allows remote authenticated users to execute arbitrary SQL commands via the q parameter...

Dell SonicWALL Scrutinizer 'q' Parameter SQL Injection Vulnerability

SQL injection vulnerability in d4d/statusFilter.php in Plixer Scrutinizer aka Dell SonicWALL Scrutinizer before 9.5.2 allows remote authenticated users to execute arbitrary SQL commands via the q parameter. CVE: CVE-2012-2962 Last updated: March 12, 2018, 5:21 p.m...

CVE-2012-2962

SQL injection vulnerability in d4d/statusFilter.php in Plixer Scrutinizer aka Dell SonicWALL Scrutinizer before 9.5.2 allows remote authenticated users to execute arbitrary SQL commands via the q parameter...

CVE-2012-2962

CVE-2012-2962 affects Plixer Scrutinizer (Dell SonicWALL Scrutinizer)

Dell SonicWALL Scrutinizer SQL injection vulnerability

Overview Dell SonicWALL Scrutinizer 9.5.0 and older versions contain a SQL injection vulnerability. Description The Dell SonicWALL service bulletin states:"After the release of Dell SonicWALL Scrutinizer 9.5.0, we received a report of an issue whereby a Scrutinizer user who had already...

CVE-2012-2962

creationtimestamp| type| source ---|---|--- 2012-07-22 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/20033 2012-08-03 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/20204 2018-05-29 15:50:33+00:00| seen|...