Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in /fcgi/scrut_fcgi.fcgi in Plixer Scrutinizer before 19.3.1. The csvExportReport endpoint action generateCSV is vulnerable to SQL injection through the sorting parameter, allowing an unauthenticated user to execute arbitrary SQL statements in the context of the application's backend database server.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Scrutinizer NetFlow & sFlow Analyzer SQL注入漏洞
Vulnerability Description
Plixer Scrutinizer NetFlow & sFlow Analyzer是美国Plixer公司的一套网络流量分析系统。该系统提供流量监视、上下文取证和安全分析等功能。 Scrutinizer NetFlow & sFlow Analyzer 19.3.1之前版本存在安全漏洞,该漏洞源于/fcgi/scrut_fcgi.fcgi组件的sorting参数存在SQL注入漏洞。
CVSS Information
N/A
Vulnerability Type
N/A