漏洞描述
SolarWinds Network Performance Monitor中存在SQL注入漏洞。该漏洞是由于对提交给UpdateActionsDescriptions API端点的数据验证不当导致的。
SolarWinds Network Performance Monitor UpdateActionsDescriptions SQL注入漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2024-28986: SolarWinds Web Help Desk < 12.8.3 - Insecure Deserialization
- POC unauth-munin: Munin Monitoring Dashboard - Exposure
- POC 安科瑞-智能环保云平台 /MainMonitor/GetEnterpriseInfoMapByDate/GetDates SQL 注入漏洞
- 安科瑞-智能环保云平台 /MainMonitor/ReflashMap/GetMapId SQL 注入漏洞
- (CVE-2025-4617)Palo Alto Networks Prisma Browser截图控制绕过漏洞
- (CVE-2025-4618)Palo Alto Networks Prisma Browser敏感信息泄露漏洞
- Code-Projects Project Monitoring System SQL注入漏洞
- 扁鹊飞救智能急救与质控系统 GetMonitorList SQL注入漏洞
- SolarWinds Web Help Desk 未授权 反序列化漏洞
- druid-monitor-unauth: Druid Monitor Unauth
- CVE-2023-20888: VMware Aria Operations for Networks - Remote Code Execution
- Network Technologies Inc ENVIROMUX存在默认口令
- (CVE-2025-8773)Dinstar Monitoring Platform SQL注入漏洞