| عنوان | SQL injection in NS-ASG application security gateway. |
|---|
| الوصف | SQL injection vulnerability in the Netcom NS-ASG application security gateway.
Vulnerability points:/protocol/firewall/uploadfirewall.php
The $FireWallId database value is accepted by messagecontent and then substituted into the database statement, the lack of validation results in sql execution. |
|---|
| المصدر | ⚠️ https://github.com/gb111d/ns-asg_poc/ |
|---|
| المستخدم | bows7ring (UID 56631) |
|---|
| ارسال | 18/10/2023 08:38 AM (3 سنوات منذ) |
|---|
| الاعتدال | 26/10/2023 07:33 AM (8 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 243590 [Netentsec NS-ASG Application Security Gateway 6.3 uploadfirewall.php messagecontent حقن SQL] |
|---|
| النقاط | 18 |
|---|