https://live.paloaltonetworks.com/t5/next-generation-firewall/how-to-patch-vulnerability-plugin-43160-cgi-generic-sql/m-p/1244077#M6532 <P>The default GP Portal Page can be disabled, so not allow users to try and log onto the web portal of the Global Protect.</P> <P>IThat would eliminate this issue/concern.&nbsp;</P> Wed, 17 Dec 2025 19:34:41 GMT S.Cantwell 2025-12-17T19:34:41Z https://live.paloaltonetworks.com/t5/next-generation-firewall/how-to-patch-vulnerability-plugin-43160-cgi-generic-sql/m-p/1244031#M6527 <DIV>Body: We have detected a blind SQL injection vulnerability (Plugin ID: 43160) on GlobalProtect login CGI (/global-protect/login.esp) using Nessus.</DIV> <DIV>&nbsp;</DIV> <DIV>Details: - CVSS Score: 7.5 (High) - Affected Parameter: 'action' - Example: /global-protect/login.esp?action=';WAITFOR DELAY '00:00:3';--</DIV> <DIV>&nbsp;</DIV> <DIV>Environment: PAN-OS version: [Your Version] GlobalProtect Portal: [Your Portal URL]</DIV> <DIV>&nbsp;</DIV> <DIV>Question: What is the recommended patch or configuration to mitigate this vulnerability?</DIV> <DIV>&nbsp;</DIV> <DIV>Is there an official fix or workaround from Palo Alto Networks?</DIV> <DIV>&nbsp;</DIV> <DIV>References: <A href="https://www.nessus.org/u?ed792cf5" target="_blank">https://www.nessus.org/u?ed792cf5</A> <A href="https://projects.webappsec.org/w/page/13246963/SQL%20Injection" target="_blank">https://projects.webappsec.org/w/page/13246963/SQL%20Injection</A></DIV> Wed, 17 Dec 2025 05:21:10 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/how-to-patch-vulnerability-plugin-43160-cgi-generic-sql/m-p/1244031#M6527 P.Namtien 2025-12-17T05:21:10Z https://live.paloaltonetworks.com/t5/next-generation-firewall/how-to-patch-vulnerability-plugin-43160-cgi-generic-sql/m-p/1244032#M6528 <TABLE> <TBODY> <TR> <TD class="label">Software Version</TD> <TD class="data">11.2.4-h7</TD> </TR> </TBODY> </TABLE> Wed, 17 Dec 2025 05:23:15 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/how-to-patch-vulnerability-plugin-43160-cgi-generic-sql/m-p/1244032#M6528 P.Namtien 2025-12-17T05:23:15Z https://live.paloaltonetworks.com/t5/next-generation-firewall/how-to-patch-vulnerability-plugin-43160-cgi-generic-sql/m-p/1244077#M6532 <P>The default GP Portal Page can be disabled, so not allow users to try and log onto the web portal of the Global Protect.</P> <P>IThat would eliminate this issue/concern.&nbsp;</P> Wed, 17 Dec 2025 19:34:41 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/how-to-patch-vulnerability-plugin-43160-cgi-generic-sql/m-p/1244077#M6532 S.Cantwell 2025-12-17T19:34:41Z https://live.paloaltonetworks.com/t5/next-generation-firewall/how-to-patch-vulnerability-plugin-43160-cgi-generic-sql/m-p/1250441#M6767 <P>HI&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/407336397">@P.Namtien</a>,<BR /><BR />Is there a official fix or did you disable the Landing Page?</P> Wed, 18 Mar 2026 11:33:46 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/how-to-patch-vulnerability-plugin-43160-cgi-generic-sql/m-p/1250441#M6767 RyanAmstutz 2026-03-18T11:33:46Z