2 matches found
CVE-2017-17610
E-commerce MLM Software 1.0 has SQL Injection via the servicedetail.php pid parameter, eventdetail.php eventid parameter, or newsdetail.php newid parameter...
CVE-2017-17610
The CVE-2017-17610 entry affects E-commerce MLM Software 1.0 . The vulnerability is a SQL Injection in multiple PHP pages: service_detail.php (pid parameter), event_detail.php (eventid parameter), and news_detail.php (newid parameter). Root cause: unsafely concatenated/unsanitized input enabling ...