2 matches found
Sql injection
Child Care Script 1.0 has SQL Injection via the /list city parameter...
CVE-2017-17608
CVE-2017-17608 affects Child Care Script 1.0. It exposes an SQL injection via the /list city parameter, allowing an attacker to inject SQL commands. CVSS data indicates high to critical impact (confidentiality, integrity, and availability). Root cause is unsanitized input in the city parameter. E...