| Título | SQL injection in NS-ASG application security gateway. |
|---|
| Descrição | SQL injection vulnerability in the Netcom NS-ASG application security gateway.
Vulnerability points:/protocol/firewall/uploadfirewall.php
The $FireWallId database value is accepted by messagecontent and then substituted into the database statement, the lack of validation results in sql execution. |
|---|
| Fonte | ⚠️ https://github.com/gb111d/ns-asg_poc/ |
|---|
| Utilizador | bows7ring (UID 56631) |
|---|
| Submissão | 18/10/2023 08h38 (há 3 anos) |
|---|
| Moderação | 26/10/2023 07h33 (8 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 243590 [Netentsec NS-ASG Application Security Gateway 6.3 uploadfirewall.php messagecontent Injeção SQL] |
|---|
| Pontos | 18 |
|---|