Snare Central

snare_central

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-11364 1Prophecyinternational 1Snare Central Nov 21, 2024 Aug 29, 2019 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 An OS Command Injection vulnerability in Snare Central before 7.4.5 allows remote authenticated attackers to inject arbitrary OS commands via the ServerConf/DataManagement/DiskManager.php FORMNAS_share parameter.
CVE-2019-11363 1Prophecyinternational 1Snare Central Nov 21, 2024 Aug 29, 2019 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 A SQL injection vulnerability in Snare Central before 7.4.5 allows remote authenticated attackers to execute arbitrary SQL commands via the AgentConsole/UserGroupQuery.php ShowUser parameter.