CVE-2023-7161 | Netentsec NS-ASG Application Security Gateway 6.3.1 Login index.php check_VirtualSiteId sql injection

Posted by Angelo Barbosa | Dec 28, 2023 | CVE

A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3.1. This affects an unknown part of the file index.php?para=index of the component Login. The manipulation of the argument check_VirtualSiteId leads to sql injection.

This vulnerability is uniquely identified as CVE-2023-7161. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2023-7161 | Netentsec NS-ASG Application Security Gateway 6.3.1 Login index.php check_VirtualSiteId sql injection

Related Posts

CVE-2023-46384 | LOYTEC LINX Configurator 7.4.10 cleartext storage in the registry

CVE-2024-3774 | aEnrich a+HRD 6.8/7.0/7.1/7.2 System Configuration access control

CVE-2024-29842 | CS Technologies Australia Evolution Controller up to 2.04.560.31.03.2024 Web Interface abacard information disclosure

CVE-2023-6975 | mlflow prior 2.9.2 path traversal