Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL injection vulnerability in d4d/statusFilter.php in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.2 allows remote authenticated users to execute arbitrary SQL commands via the q parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Dell SonicWALL Scrutinizer "q" 参数SQL注入漏洞
Vulnerability Description
Dell SonicWALL Scrutinizer是美国戴尔(Dell)公司的一套支持多厂商的应用通信分析可视化与报告工具。该工具提供深度包分析、振动/延迟监测和历史及预先报告等功能。 Dell SonicWALL Scrutinizer(又称Plixer Scrutinizer) 9.5.2之前版本中存在漏洞,可被恶意攻击者利用进行SQL注入攻击。该漏洞源于通过‘q’参数传送到d4d/statusFilter.php脚本中的输入在用于SQL查询之前未经正确验证。攻击者可利用该漏洞通过注入任意SQL代码
CVSS Information
N/A
Vulnerability Type
N/A