CVE-2017-15978
CVE-2017-15978 affects AROX School ERP PHP Script 1.0. The vulnerability is an SQL injection via the GET parameter id in office_admin/ (as shown in multiple sources, including Exploit-DB and CVE records). PoCs indicate time-based blind payloads (e.g., id parameter manipulation with AND SLEEP) to ...