CVE-2017-17597
Nearbuy Clone Script 3.2 has SQL Injection via the category_list.php search parameter.
Source: CVE-2017-17597
[월:] 2017년 12월
CVE-2017-17600
CVE-2017-17600
Basic B2B Script 2.0.8 has SQL Injection via the product_details.php id parameter.
Source: CVE-2017-17600
CVE-2017-17599
CVE-2017-17599
Advance Online Learning Management Script 3.1 has SQL Injection via the courselist.php subcatid or popcourseid parameter.
Source: CVE-2017-17599
CVE-2017-17602
CVE-2017-17602
Advance B2B Script 2.1.3 has SQL Injection via the tradeshow-list-detail.php show_id or view-product.php pid parameter.
Source: CVE-2017-17602
CVE-2017-17601
CVE-2017-17601
Cab Booking Script 1.0 has SQL Injection via the /service-list city parameter.
Source: CVE-2017-17601
CVE-2017-17604
CVE-2017-17604
Entrepreneur Bus Booking Script 3.0.4 has SQL Injection via the booker_details.php sourcebus parameter.
Source: CVE-2017-17604
CVE-2017-17603
CVE-2017-17603
Advanced Real Estate Script 4.0.7 has SQL Injection via the search-results.php Projectmain, proj_type, searchtext, sell_price, or maxprice parameter.
Source: CVE-2017-17603
CVE-2017-17591
CVE-2017-17591
Realestate Crowdfunding Script 2.7.2 has SQL Injection via the single-cause.php pid parameter.
Source: CVE-2017-17591
CVE-2017-17596
CVE-2017-17596
Entrepreneur Job Portal Script 2.0.6 has SQL Injection via the jobsearch_all.php rid1 parameter.
Source: CVE-2017-17596
CVE-2017-17593
CVE-2017-17593
Simple Chatting System 1.0 allows Arbitrary File Upload via view/my_profile.php, which places files under uploads/.
Source: CVE-2017-17593