CVE-2015-6811
CyberoamOS <= 10.6.2 MR-1 - SQL Injection via login.xml Username Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2015-6811. PoCs published by Dharmendra Kumar Singh.
AI-analyzed exploit summary This is a detailed writeup describing a blind SQL injection vulnerability in Cyberoam NG Firewall's captive portal. It explains both boolean-based and stacked query techniques but does not include executable exploit code.
Description
SQL injection vulnerability in the Sophos Cyberoam CR500iNG-XP firewall appliance with CyberoamOS 10.6.2 MR-1 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter to login.xml.
Exploits (1)
This is a detailed writeup describing a blind SQL injection vulnerability in Cyberoam NG Firewall's captive portal. It explains both boolean-based and stacked query techniques but does not include executable exploit code.