CVE-2014-4977

Dell SonicWall Scrutinizer 11.0.1 - SQL Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2014-4977. PoCs published by Metasploit, bperry, sinn3r, including Metasploit module exploits/multi/http/sonicwall_scrutinizer_methoddetail_sqli.

AI-analyzed exploit summary This Metasploit module exploits a SQL injection vulnerability in Dell SonicWALL Scrutinizer 11.01 via the methodDetail parameter in exporters.php, allowing arbitrary file write and remote code execution. It uses default admin credentials for authentication and supports both Windows and Linux targets.

Description

Multiple SQL injection vulnerabilities in Dell SonicWall Scrutinizer 11.0.1 allow remote authenticated users to execute arbitrary SQL commands via the (1) selectedUserGroup parameter in a create new user request to cgi-bin/admin.cgi or the (2) user_id parameter in the changeUnit function, (3) methodDetail parameter in the methodDetail function, or (4) xcNetworkDetail parameter in the xcNetworkDetail function in d4d/exporters.php.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotemultiple
https://www.exploit-db.com/exploits/39836

This Metasploit module exploits a SQL injection vulnerability in Dell SonicWALL Scrutinizer 11.01 via the methodDetail parameter in exporters.php, allowing arbitrary file write and remote code execution. It uses default admin credentials for authentication and supports both Windows and Linux targets.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Dell SonicWALL Scrutinizer 11.01
Auth required
Prerequisites: Network access to the target · Default or known credentials for authentication
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
by bperry, sinn3r · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/sonicwall_scrutinizer_methoddetail_sqli.rb

This Metasploit module exploits a SQL injection vulnerability in Dell SonicWALL Scrutinizer 11.01 via the methodDetail parameter in exporters.php, allowing arbitrary file write and remote code execution. It uses default credentials (admin:admin) for authentication and supports both Windows and Linux targets.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Dell SonicWALL Scrutinizer 11.01
Auth required
Prerequisites: Network access to the target · Default or known credentials (admin:admin)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8
Core References
Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/39836/
Mailing List, Third Party Advisory mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2014/Jul/44
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/94439
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/68495
Third Party Advisory x_refsource_misc
https://gist.github.com/brandonprry/36b4b8df1cde279a9305
Exploit, Third Party Advisory x_refsource_misc
https://gist.github.com/brandonprry/76741d9a0d4f518fe297

Scores

EPSS 0.7493
EPSS Percentile 99.4%

Details

CWE
CWE-89
Status published
Products (1)
sonicwall/scrutinizer 11.0.1
Published Jul 16, 2014
Tracked Since Feb 18, 2026