Cyberoam NetGenie Cross-Site Scripting

Cyberoam NetGenie C0101B1-20141120-NG11VO devices through 2021-08-14 are susceptible to reflected cross-site scripting via the 'u' parameter of ft.php. id: CVE-2021-38702 info: name: Cyberoam NetGenie Cross-Site Scripting author: geeknik severity: medium description: Cyberoam NetGenie...

Cyberoam Authentication Client 安全漏洞

The Cyberoam Authentication Client is a network authentication client developed by the American company Cyberoam. Version 2.1.2.7 of the Cyberoam Authentication Client contains a security vulnerability. This vulnerability stems from a buffer overflow in the Cyberoam Server Address field, which...

CVE-2020-37095

Cyberoam Authentication Client 2.1.2.7 contains a buffer overflow vulnerability that allows remote attackers to execute arbitrary code by overwriting Structured Exception Handler SEH memory. Attackers can craft a malicious input in the 'Cyberoam Server Address' field to trigger a bind TCP shell o...

CVE-2020-37095 Cyberoam Authentication Client 2.1.2.7 - Buffer Overflow (SEH)

Cyberoam Authentication Client 2.1.2.7 contains a buffer overflow vulnerability that allows remote attackers to execute arbitrary code by overwriting Structured Exception Handler SEH memory. Attackers can craft a malicious input in the 'Cyberoam Server Address' field to trigger a bind TCP shell o...

PT-2026-6813

Name of the Vulnerable Software and Affected Versions Cyberoam Authentication Client version 2.1.2.7 Description The Cyberoam Authentication Client software contains a buffer overflow issue that enables remote attackers to run code without permission by overwriting Structured Exception Handler SE...

EUVD-2011-4953

Malware in sbrugna...

EUVD-2015-6748

Malware in sbrugna...

EUVD-2012-1085

Malware in sbrugna...

EUVD-2014-5388

Malware in sbrugna...

EUVD-2019-7531

Malware in sbrugna...

EUVD-2016-10634

Malware in sbrugna...

EUVD-2014-5389

Malware in sbrugna...

EUVD-2014-5390

Malware in sbrugna...

CVE-2021-38702

Cyberoam NetGenie C0101B1-20141120-NG11VO devices through 2021-08-14 allow tweb/ft.php?u=XSS attacks...

CVE-2020-29574

An SQL injection vulnerability in the WebAdmin of Cyberoam OS through 2020-12-04 allows unauthenticated attackers to execute arbitrary SQL statements remotely...

CVE-2016-3968

Multiple cross-site scripting XSS vulnerabilities in Sophos Cyberoam CR100iNG UTM appliance with firmware 10.6.3 MR-1 build 503, CR35iNG UTM appliance with firmware 10.6.2 MR-1 build 383, and CR35iNG UTM appliance with firmware 10.6.2 Build 378 allow remote attackers to inject arbitrary web scrip...

CVE-2019-17059

A shell injection vulnerability on the Sophos Cyberoam firewall appliance with CyberoamOS before 10.6.6 MR-6 allows remote attackers to execute arbitrary commands via the Web Admin and SSL VPN consoles...

CVE-2015-6811

SQL injection vulnerability in the Sophos Cyberoam CR500iNG-XP firewall appliance with CyberoamOS 10.6.2 MR-1 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter to login.xml...

Sophos Cyberoam SQLi (CVE-2020-29574)

The version of Sophos Cyberoam installed on the remote host is potentially affected by an SQL injection vulnerability. An SQL injection vulnerability in the WebAdmin of Cyberoam OS through 2020-12-04 allows unauthenticated attackers to execute arbitrary SQL statements remotely. Note that Nessus h...

VulnCheck KEV: CVE-2021-38702

Cyberoam NetGenie C0101B1-20141120-NG11VO devices through 2021-08-14 allow tweb/ft.php?u=XSS attacks...