CVE-2017-20138

A vulnerability was found in Itech Auction Script 6.49. It has been classified as critical. This affects an unknown part of the file /mcategory.php. The manipulation of the argument mcid with the input 4' AND 1734=1734 AND 'Ggks'='Ggks leads to sql injection Blind. It is possible to initiate the...

Ambit Technologies iTech Auction Script SQL注入漏洞

Ambit Technologies iTech Auction Script is a popular and cost-effective solution from Ambit Technologies India for launching your auction website. Ambit Technologies iTech Auction Script version 6.49 suffers from a SQL injection vulnerability that stems from the presence of an insecure file...