2 matches found
CVE-2017-17616
Event Search Script 1.0 has SQL Injection via the /event-list city parameter...
CVE-2017-17616
CVE-2017-17616 affects PHP Scripts Mall Event Search Script 1.0. A SQL injection exists in the /event-list endpoint via the city parameter, enabling a remote attacker to inject SQL commands. The CNVD entry confirms the vulnerability and the affected script version; exploitation details are provid...