Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2022-29383 PoC — NETGEAR ProSafe SSL VPN firmware FVS336G SQL注入漏洞

Source
https://github.com/badboycxcc/Netgear-ssl-vpn-20211222-CVE-2022-29383
Associated Vulnerability
Title:NETGEAR ProSafe SSL VPN firmware FVS336G SQL注入漏洞 (CVE-2022-29383)
Description:NETGEAR ProSafe SSL VPN firmware FVS336Gv2 and FVS336Gv3 was discovered to contain a SQL injection vulnerability via USERDBDomains.Domainname at cgi-bin/platform.cgi.
Readme
# Netgear-ssl-vpn-20211222
# CVE-2022-29383

## NETGEAR ProSafe  SSL VPN  SQL injection vulnerability exists in scgi-bin/platform.cgi     


## Firmware version: FVS336Gv2 - FVS336Gv3

![FVS336Gv3](https://github.com/badboycxcc/Netgear-ssl-vpn-20211222/blob/main/FSV336G-0.png)
### sqlmap command  
![](https://github.com/badboycxcc/Netgear-ssl-vpn-20211222/blob/main/FVS336G-1.png)
### SQL Injection Vulnerability : USERDBDomains.Domainname
![](https://github.com/badboycxcc/Netgear-ssl-vpn-20211222/blob/main/FVS336G-2.png)
File Snapshot

 [4.0K]  /data/pocs/42ab8472abef39e91c671a0b31c499a83a6e148c
├── [ 92K]  FSV336G-0.png
├── [442K]  FVS336G-1.png
├── [388K]  FVS336G-2.png
└── [ 528]  README.md

0 directories, 4 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →