8 matches found
SonicWall Secure Remote Access (SRA) SQL Injection Vulnerability
SonicWall Secure Remote Access SRA products contain an improper neutralization of a SQL Command leading to SQL injection...
Sonicwall SRA viewcert.cgi Remote Command Execution Vulnerability
SonicWALL provides Internet security solutions for small, medium and distributed businesses. A security vulnerability exists in Dell SonicWALL SRA 8.1.0.2-14sv, which could allow an attacker to execute arbitrary code with root privileges...
Sonicwall SRA 8.1.0.2-14sv viewcert.cgi Remote Command Execution
Exploit Title: Sonicwall viewcert.cgi CGI Remote Command Injection Vulnerablity Date: 12/24/2016 Exploit Author: xort @ Critical Start Vendor Homepage: www.sonicwall.com Software Link: sonicwall.com/products/sra-virtual-appliance Version: 8.1.0.2-14sv Tested on: 8.1.0.2-14sv CVE : awaiting cve...
Sonicwall SRA 8.1.0.2-14sv Remote Command Execution
Exploit Title: Sonicwall extensionsettings scriptname Remote Command Injection Vulnerablity Date: 12/25/2016 Exploit Author: xort @ Critical Start Vendor Homepage: www.sonicwall.com Software Link: sonicwall.com/products/sra-virtual-appliance Version: 8.1.0.2-14sv Tested on: 8.1.0.2-14sv CVE :...
Sonicwall SRA 8.1.0.2-14sv viewcert.cgi Remote Command Execution Exploit
This Metasploit module exploits a remote command execution vulnerability in the Sonicwall SRA Appliance versions 8.1.0.2-14sv and below. The vulnerability exists in a section of the machine's administrative interface for performing configurations related to on-connect scripts to be launched for...
Sonicwall 8.1.0.2-14sv - viewcert.cgi Remote Command Injection (Metasploit)
Sonicwall 8.1.0.2-14sv - viewcert.cgi Remote Command Injection Metasploit Exploit Title: Sonicwall viewcert.cgi CGI Remote Command Injection Vulnerablity Date: 12/24/2016 Exploit Author: xort @ Critical Start Vendor Homepage: www.sonicwall.com Software Link:...
Sonicwall 8.1.0.2-14sv - 'viewcert.cgi' Remote Command Injection (Metasploit)
Exploit Title: Sonicwall viewcert.cgi CGI Remote Command Injection Vulnerablity Date: 12/24/2016 Exploit Author: xort @ Critical Start Vendor Homepage: www.sonicwall.com Software Link: sonicwall.com/products/sra-virtual-appliance Version: 8.1.0.2-14sv Tested on: 8.1.0.2-14sv CVE : awaiting cve...
CVE-2015-2248
Cross-site request forgery CSRF vulnerability in the user portal in Dell SonicWALL Secure Remote Access SRA products with firmware before 7.5.1.0-38sv and 8.x before 8.0.0.1-16sv allows remote attackers to hijack the authentication of users for requests that create bookmarks via a crafted request...