SQL Injection vulnerability in SonicWall Viewpoint

vendor:

Viewpoint

by:

Not provided

7.5

CVSS

HIGH

SQL Injection

CWE

Product Name: Viewpoint

Affected Version From: Viewpoint 6.0 SP2

Affected Version To: Not provided

Patch Exists: No

Related CWE: Not provided

CPE: a:sonicwall:viewpoint:6.0_sp2

Metasploit:

Other Scripts:

Platforms Tested: Not provided

Not provided

SQL Injection vulnerability in SonicWall Viewpoint

SonicWall Viewpoint is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

Mitigation:

Apply the latest patches or updates from the vendor to fix the SQL injection vulnerability. Additionally, input validation and parameterized queries should be implemented to sanitize user-supplied data.

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/49906/info

SonicWall Viewpoint is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.

Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

Viewpoint 6.0 SP2 is vulnerable; other versions may also be affected. 

https://www.example.com/sgms/reports/scheduledreports/configure/scheduleProps.jsp?scheduleID=3%20order%20by%201,%20%28 select%20case%20when%20%281=1%29%20%20then%201%20else%201*%28select%20table_name%20from%20information_schema.tables%29end%29=1