Lucene search
K

6 matches found

Check Point Advisories
Check Point Advisories
added 2017/05/21 12:0 a.m.7 views

Dell SonicWALL Scrutinizer methodDetail SQL Injection (CVE-2014-4977)

An SQL injection vulnerability exists in Dell SonicWALL Scrutinizer. A remote, authenticated attacker can exploit this vulnerability by sending a crafted request. Successful exploitation of this vulnerability can lead to arbitrary code execution in the context of SYSTEM for windows or as Apache f...

6.5CVSS3.1AI score0.74932EPSS
Exploits5
0day.today
0day.today
added 2016/05/17 12:0 a.m.55 views

Dell SonicWALL Scrutinizer 11.01 - methodDetail SQL Injection (Metasploit)

Exploit for multiple platform in category remote exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule "Dell SonicWALL Scrutinizer 11.01 methodDetail SQL Injection",...

6.5CVSS6.6AI score0.74932EPSS
Exploits5
Packet Storm
Packet Storm
added 2016/05/17 12:0 a.m.35 views

Dell SonicWALL Scrutinizer 11.01 methodDetail SQL Injection

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule "Dell SonicWALL Scrutinizer 11.01 methodDetail SQL Injection", 'Description' = %q This module exploits a vulnerability found in...

6.5CVSS0.6AI score0.74932EPSS
Exploits5
Circl
Circl
added 2016/05/17 12:0 a.m.34 views

CVE-2014-4977

creationtimestamp| type| source ---|---|--- 2016-05-17 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39836 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/sonicwallscrutinizermethoddetailsqli.rb 2025-02-06...

6.5CVSS5.5AI score0.74932EPSS
Exploits5References2
Metasploit
Metasploit
added 2016/05/12 3:27 a.m.24 views

Dell SonicWALL Scrutinizer 11.01 methodDetail SQL Injection

This module exploits a vulnerability found in Dell SonicWALL Scrutinizer. The methodDetail parameter in exporters.php allows an attacker to write arbitrary files to the file system with an SQL Injection attack, and gain remote code execution under the context of SYSTEM for Windows, or as Apache f...

6.5CVSS0.6AI score0.74932EPSS
Exploits5
SonicWall
SonicWall
added 2014/07/16 2:19 p.m.7 views

Dell SonicWALL Scrutinizer Multiple Security Vulnerabilities

Multiple SQL injection vulnerabilities in Dell SonicWall Scrutinizer 11.0.1 allow remote authenticated users to execute arbitrary SQL commands via the 1 selectedUserGroup parameter in a create new user request to cgi-bin/admin.cgi or the 2 userid parameter in the changeUnit function, 3 methodDeta...

6.5CVSS7.9AI score0.74932EPSS
Exploits5
Rows per page
Query Builder