2 matches found
CVE-2017-20067 Hindu Matrimonial Script sql injection
A vulnerability was found in Hindu Matrimonial Script. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/. The manipulation of the argument username/password with the input 'or''=' leads to sql injection. The attack can be launched...
CVE-2017-20067
The CVE-2017-20067 entry concerns Hindu Matrimonial Script with an SQL injection vulnerability in an unknown admin function. The root cause is input manipulation of username/password via the payload 'or''=', enabling remote exploitation. Public disclosures exist (exploitation details linked in re...