CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30871
https://notcve.org/view.php?id=CVE-2024-30871
01 Apr 2024 — netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /WebPages/applyhardware.php. netentsec NS-ASG 6.3 es vulnerable a la inyección SQL a través de /WebPages/applyhardware.php. • https://github.com/hundanchen69/cve/blob/main/NS-ASG-sql-applyhardware.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30865
https://notcve.org/view.php?id=CVE-2024-30865
01 Apr 2024 — netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/edit_user_login.php. netentsec NS-ASG 6.3 es vulnerable a la inyección SQL a través de /admin/edit_user_login.php. • https://github.com/hundanchen69/cve/blob/main/NS-ASG-sql-edit_user_login.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-30862
https://notcve.org/view.php?id=CVE-2024-30862
01 Apr 2024 — netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /3g/index.php. netentsec NS-ASG 6.3 es vulnerable a la inyección SQL a través de /3g/index.php. • https://github.com/hundanchen69/cve/blob/main/NS-ASG-sql-index.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30866
https://notcve.org/view.php?id=CVE-2024-30866
01 Apr 2024 — netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /3g/menu.php. netentsec NS-ASG 6.3 es vulnerable a la inyección SQL a través de /3g/menu.php. • https://github.com/hundanchen69/cve/blob/main/NS-ASG-sql-menu.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30860
https://notcve.org/view.php?id=CVE-2024-30860
01 Apr 2024 — netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/export_excel_user.php. netentsec NS-ASG 6.3 es vulnerable a la inyección SQL a través de /admin/export_excel_user.php. • https://github.com/hundanchen69/cve/blob/main/NS-ASG-sql-export_excel_user.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30868
https://notcve.org/view.php?id=CVE-2024-30868
01 Apr 2024 — netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/add_getlogin.php. netentsec NS-ASG 6.3 es vulnerable a la inyección SQL a través de /admin/add_getlogin.php. • https://github.com/hundanchen69/cve/blob/main/NS-ASG-sql-add_getlogin.md • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30870
https://notcve.org/view.php?id=CVE-2024-30870
01 Apr 2024 — netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/address_interpret.php. netentsec NS-ASG 6.3 es vulnerable a la inyección SQL a través de /admin/address_interpret.php. • https://github.com/hundanchen69/cve/blob/main/NS-ASG-sql-address_interpret.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30859
https://notcve.org/view.php?id=CVE-2024-30859
01 Apr 2024 — netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/config_ISCGroupSSLCert.php. netentsec NS-ASG 6.3 es vulnerable a la inyección SQL a través de /admin/config_ISCGroupSSLCert.php. • https://github.com/hundanchen69/cve/blob/main/NS-ASG-sql-config_ISCGroupSSLCert.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2024-3041 – Netentsec NS-ASG Application Security Gateway listloginfo.php sql injection
https://notcve.org/view.php?id=CVE-2024-3041
28 Mar 2024 — A vulnerability has been found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. This vulnerability affects unknown code of the file /protocol/log/listloginfo.php. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. • https://github.com/flyyue2001/cve/blob/main/NS-ASG-sql-listloginfo.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2024-3040 – Netentsec NS-ASG Application Security Gateway list_crl_conf sql injection
https://notcve.org/view.php?id=CVE-2024-3040
28 Mar 2024 — A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /admin/list_crl_conf. The manipulation of the argument CRLId leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. • https://github.com/flyyue2001/cve/blob/main/NS-ASG-sql-list_crl_conf.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •