Lucene search
K

4 matches found

NVD
NVD
added 2015/07/07 2:59 p.m.21 views

CVE-2015-2849

SQL injection vulnerability in main.ant in the ANTlabs InnGate firmware on IG 3100, InnGate 3.01 E, InnGate 3.10 E, InnGate 3.10 M, SG 4, and SSG 4 devices, when https is used, allows remote attackers to execute arbitrary SQL commands via the ppli parameter...

7.5CVSS8.5AI score0.01349EPSS
Exploits0References1
Cvelist
Cvelist
added 2015/07/07 2:0 p.m.23 views

CVE-2015-2849

SQL injection vulnerability in main.ant in the ANTlabs InnGate firmware on IG 3100, InnGate 3.01 E, InnGate 3.10 E, InnGate 3.10 M, SG 4, and SSG 4 devices, when https is used, allows remote attackers to execute arbitrary SQL commands via the ppli parameter...

8.5AI score0.01349EPSS
Exploits0References1
CVE
CVE
added 2015/07/07 2:0 p.m.46 views

CVE-2015-2849

Summary (CVE-2015-2849) : The ANTlabs InnGate firmware (IG3100, InnGate 3.01 E, 3.10 E, 3.10 M, SG 4, SSG 4) contains a SQL injection vulnerability in the main.ant page. The issue arises from the ppli URL parameter; when using HTTPS, a remote attacker can induce arbitrary SQL commands on the unde...

7.5CVSS8.8AI score0.01349EPSS
Exploits0References1Affected Software6
CERT
CERT
added 2015/07/06 12:0 a.m.50 views

ANTLabs InnGate gateway device contains SQL injection and reflected cross-site scripting vulnerabilities

Overview ANTlabs InnGate is a gateway device designed for operating corporate guest/visitor networks. Multiple InnGate models have been confirmed to be vulnerable to SQL injection and cross-site scripting attacks. Description CWE-89: Improper Neutralization of Special Elements used in an SQL...

7.5CVSS7.5AI score0.01349EPSS
Exploits0
Rows per page
Query Builder