Full title: Dell Sonicwall Scrutinizer 11.01 Code Execution / SQL Injection 
Category: web applications
Platform: php
Dell Sonicwall Scrutinizer version 11.01 is vulnerable to an authenticated SQL injection that allows an attacker to write arbitrary files to the file system. This vulnerability can be used to write a PHP script to the file system to gain remote command execution. Metasploit module included.

# 0day.today @ http://0day.today/