CVE-2019-15016

Summary

An SQL injection vulnerability exists in the management interface of Zingbox Inspector versions 1.288 and earlier, that allows for unsanitized data provided by an authenticated user to be passed from the web UI into the database.

Affected Software

VendorProductVersion RangeStatus
n/aPalo Alto Networks Zingbox InspectorZingbox Inspector, versions 1.288 and earlier.affected

Weaknesses

  • SQL Injection

ADP Enrichment

CVE Program Container

Additional References

References