CVE-2017-17618 (kickstarter_clone_script)
Kickstarter Clone Script 2.0 has SQL Injection via the investcalc.php projid parameter.
[월:] 2017년 12월
CVE-2017-17620 (lawyer_search_script)
CVE-2017-17620 (lawyer_search_script)
Lawyer Search Script 1.1 has SQL Injection via the /lawyer-list city parameter.
CVE-2017-17619 (laundry_booking_script)
CVE-2017-17619 (laundry_booking_script)
Laundry Booking Script 1.0 has SQL Injection via the /list city parameter.
CVE-2017-17613 (freelance_website_script)
CVE-2017-17613 (freelance_website_script)
Freelance Website Script 2.0.6 has SQL Injection via the jobdetails.php pr_id parameter or the searchbycat_list.php catid parameter.
CVE-2017-17614 (hotel_restaurant_reviews_and_feedback_script)
CVE-2017-17614 (hotel_restaurant_reviews_and_feedback_script)
Food Order Script 1.0 has SQL Injection via the /list city parameter.
Source: CVE-2017-17614 (hotel_restaurant_reviews_and_feedback_script)
CVE-2017-17615 (facebook_clone_script)
CVE-2017-17615 (facebook_clone_script)
Facebook Clone Script 1.0 has SQL Injection via the friend-profile.php id parameter.
CVE-2017-17628 (responsive_realestate_script)
CVE-2017-17628 (responsive_realestate_script)
Responsive Realestate Script 3.2 has SQL Injection via the property-list tbud parameter.
CVE-2017-17621 (multivendor_penny_auction_clone_script)
CVE-2017-17621 (multivendor_penny_auction_clone_script)
Multivendor Penny Auction Clone Script 1.0 has SQL Injection via the PATH_INFO to the /detail URI.
Source: CVE-2017-17621 (multivendor_penny_auction_clone_script)
CVE-2017-17622 (online_exam_test_application_script)
CVE-2017-17622 (online_exam_test_application_script)
Online Exam Test Application Script 1.6 has SQL Injection via the exams.php sort parameter.
Source: CVE-2017-17622 (online_exam_test_application_script)
CVE-2017-17626 (readymade_php_classified_script)
CVE-2017-17626 (readymade_php_classified_script)
Readymade PHP Classified Script 3.3 has SQL Injection via the /categories subctid or mctid parameter.