CVE-2017-20129
CVE-2017-20129 concerns a SQL injection vulnerability in LogoStore’s /LogoStore/search.php. Multiple connected documents confirm the vulnerability arises from unsafely handling the query parameter, with an input like test' UNION ALL SELECT CONCAT(CONCAT('qqkkq','VnPVWVaYxljWqGpLLbEIyPIHBjjjjASQTn...