CVE-2012-2962

Currently unrated

Key Information:

Vendor: Sonicwall
Status: Scrutinizer
Vendor: CVE Published:; 30 July 2012

Summary

SQL injection vulnerability in d4d/statusFilter.php in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.2 allows remote authenticated users to execute arbitrary SQL commands via the q parameter.

References

http://www.osvdb.org/84232

vdb-entryx_refsource_OSVDB

http://secunia.com/advisories/50052

third-party-advisoryx_refsource_SECUNIA

http://www.sonicwall.com/shared/download/Dell_SonicWALL_S...

x_refsource_CONFIRM

EPSS Score

97% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 30, 2012
Vulnerability Reserved
May 30, 2012

Collectors

NVD DatabaseMitre Database