CVE-2017-17627 (readymade_video_sharing_script)
Readymade Video Sharing Script 3.2 has SQL Injection via the single-video-detail.php report_videos array parameter.
[월:] 2017년 12월
CVE-2017-17617 (foodspotting_clone_script)
CVE-2017-17617 (foodspotting_clone_script)
Foodspotting Clone Script 1.0 has SQL Injection via the quicksearch.php q parameter.
CVE-2017-17612 (hot_scripts_clone)
CVE-2017-17612 (hot_scripts_clone)
Hot Scripts Clone 3.1 has SQL Injection via the /categories subctid or mctid parameter.
CVE-2017-17629 (secure_e-commerce_script)
CVE-2017-17629 (secure_e-commerce_script)
Secure E-commerce Script 2.0.1 has SQL Injection via the category.php searchmain or searchcat parameter, or the single_detail.php sid parameter.
CVE-2017-17616 (event_calendar_category_script)
CVE-2017-17616 (event_calendar_category_script)
Event Search Script 1.0 has SQL Injection via the /event-list city parameter.
CVE-2017-17630 (yoga_class_script)
CVE-2017-17630 (yoga_class_script)
Yoga Class Script 1.0 has SQL Injection via the /list city parameter.
CVE-2017-17629
CVE-2017-17629
Secure E-commerce Script 2.0.1 has SQL Injection via the category.php searchmain or searchcat parameter, or the single_detail.php sid parameter.
Source: CVE-2017-17629
CVE-2017-17628
CVE-2017-17628
Responsive Realestate Script 3.2 has SQL Injection via the property-list tbud parameter.
Source: CVE-2017-17628
CVE-2017-17627
CVE-2017-17627
Readymade Video Sharing Script 3.2 has SQL Injection via the single-video-detail.php report_videos array parameter.
Source: CVE-2017-17627
CVE-2017-17624
CVE-2017-17624
PHP Multivendor Ecommerce 1.0 has SQL Injection via the single_detail.php sid parameter, or the category.php searchcat or chid1 parameter.
Source: CVE-2017-17624