Skip to main content

Scrutinizer

11 CVEs product

Monthly

CVE-2023-41263 LOW POC Monitor

An issue was discovered in Plixer Scrutinizer before 19.3.1. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Information Disclosure Scrutinizer
NVD GitHub
CVSS 3.1
3.7
EPSS
0.4%
CVE-2023-41262 CRITICAL POC Act Now

An issue was discovered in /fcgi/scrut_fcgi.fcgi in Plixer Scrutinizer before 19.3.1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Scrutinizer
NVD GitHub
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-41261 MEDIUM POC This Month

An issue was discovered in /fcgi/scrut_fcgi.fcgi in Plixer Scrutinizer before 19.3.1. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Scrutinizer
NVD GitHub
CVSS 3.1
5.3
EPSS
0.5%
CVE-2021-28993 HIGH This Week

Plixer Scrutinizer 19.0.2 is affected by: SQL Injection. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Scrutinizer
NVD VulDB
CVSS 3.1
7.5
EPSS
1.0%
CVE-2014-4977 MEDIUM POC THREAT This Month

Multiple SQL injection vulnerabilities in Dell SonicWall Scrutinizer 11.0.1 allow remote authenticated users to execute arbitrary SQL commands via the (1) selectedUserGroup parameter in a create new. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 84.5%.

Sonicwall PHP SQLi Dell Scrutinizer
NVD Exploit-DB GitHub
CVSS 2.0
6.5
EPSS
84.5%
Threat
5.3
CVE-2014-4976 MEDIUM POC This Month

Dell SonicWall Scrutinizer 11.0.1 allows remote authenticated users to change user passwords via the user ID in the savePrefs parameter in a change password request to cgi-bin/admin.cgi. Rated medium severity (CVSS 5.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Sonicwall Privilege Escalation Dell Scrutinizer
NVD GitHub
CVSS 2.0
5.5
EPSS
3.1%
CVE-2012-3951 HIGH POC THREAT Act Now

The MySQL component in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) 9.0.1.19899 and earlier has a default password of admin for the (1) scrutinizer and (2) scrutremote accounts, which allows. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 79.5%.

Dell SQLi Sonicwall Scrutinizer
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
79.5%
Threat
5.4
CVE-2012-3848 MEDIUM POC This Month

Multiple cross-site scripting (XSS) vulnerabilities in the web console in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.0 allow remote attackers to inject arbitrary web script or. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

PHP Dell Sonicwall XSS Scrutinizer
NVD Exploit-DB
CVSS 2.0
4.3
EPSS
0.7%
CVE-2012-2627 CRITICAL POC Act Now

d4d/uploader.php in the web console in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.0 allows remote attackers to create or overwrite arbitrary files in. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP Dell Information Disclosure Sonicwall Scrutinizer
NVD Exploit-DB
CVSS 2.0
9.4
EPSS
8.5%
CVE-2012-2626 MEDIUM POC THREAT This Month

cgi-bin/admin.cgi in the web console in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.0 does not require token authentication, which allows remote attackers to add administrative. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 76.0%.

Dell Sonicwall Authentication Bypass Scrutinizer
NVD Exploit-DB
CVSS 2.0
5.0
EPSS
76.0%
Threat
4.8
CVE-2012-2962 MEDIUM POC THREAT This Month

SQL injection vulnerability in d4d/statusFilter.php in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.2 allows remote authenticated users to execute arbitrary SQL commands via the q. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 90.3%.

PHP Dell SQLi Sonicwall Scrutinizer
NVD Exploit-DB
CVSS 2.0
6.5
EPSS
90.3%
Threat
5.5
EPSS 0% CVSS 3.7
LOW POC Monitor

An issue was discovered in Plixer Scrutinizer before 19.3.1. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Information Disclosure Scrutinizer
NVD GitHub
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

An issue was discovered in /fcgi/scrut_fcgi.fcgi in Plixer Scrutinizer before 19.3.1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Scrutinizer
NVD GitHub
EPSS 0% CVSS 5.3
MEDIUM POC This Month

An issue was discovered in /fcgi/scrut_fcgi.fcgi in Plixer Scrutinizer before 19.3.1. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Scrutinizer
NVD GitHub
EPSS 1% CVSS 7.5
HIGH This Week

Plixer Scrutinizer 19.0.2 is affected by: SQL Injection. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Scrutinizer
NVD VulDB
EPSS 84% 5.3 CVSS 6.5
MEDIUM POC THREAT This Month

Multiple SQL injection vulnerabilities in Dell SonicWall Scrutinizer 11.0.1 allow remote authenticated users to execute arbitrary SQL commands via the (1) selectedUserGroup parameter in a create new. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 84.5%.

Sonicwall PHP SQLi +2
NVD Exploit-DB GitHub
EPSS 3% CVSS 5.5
MEDIUM POC This Month

Dell SonicWall Scrutinizer 11.0.1 allows remote authenticated users to change user passwords via the user ID in the savePrefs parameter in a change password request to cgi-bin/admin.cgi. Rated medium severity (CVSS 5.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Sonicwall Privilege Escalation Dell +1
NVD GitHub
EPSS 80% 5.4 CVSS 7.5
HIGH POC THREAT Act Now

The MySQL component in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) 9.0.1.19899 and earlier has a default password of admin for the (1) scrutinizer and (2) scrutremote accounts, which allows. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 79.5%.

Dell SQLi Sonicwall +1
NVD Exploit-DB
EPSS 1% CVSS 4.3
MEDIUM POC This Month

Multiple cross-site scripting (XSS) vulnerabilities in the web console in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.0 allow remote attackers to inject arbitrary web script or. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

PHP Dell Sonicwall +2
NVD Exploit-DB
EPSS 8% CVSS 9.4
CRITICAL POC Act Now

d4d/uploader.php in the web console in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.0 allows remote attackers to create or overwrite arbitrary files in. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP Dell Information Disclosure +2
NVD Exploit-DB
EPSS 76% 4.8 CVSS 5.0
MEDIUM POC THREAT This Month

cgi-bin/admin.cgi in the web console in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.0 does not require token authentication, which allows remote attackers to add administrative. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 76.0%.

Dell Sonicwall Authentication Bypass +1
NVD Exploit-DB
EPSS 90% 5.5 CVSS 6.5
MEDIUM POC THREAT This Month

SQL injection vulnerability in d4d/statusFilter.php in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.2 allows remote authenticated users to execute arbitrary SQL commands via the q. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 90.3%.

PHP Dell SQLi +2
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy