AUTHOR='@xer0dayz'
VULN_NAME='CVE-2020-12271 - Sophos XG Firewall Pre-Auth SQL Injection'
URI='/userportal/webpages/myaccount/login.jsp'
METHOD='GET'
MATCH='loginstylesheet'
SEVERITY='P1 - CRITICAL'
CURL_OPTS="--user-agent '' -s -L --insecure"
SECONDARY_COMMANDS=''
GREP_OPTIONS='-i'