CVE-2017-15988
CVE-2017-15988 concerns the Nice PHP FAQ Script , where an unsafe handling of the GET parameter nice_theme in index.php leads to SQL injection. The root cause is lack of input sanitization/parameterization, enabling an attacker to inject SQL commands via the nice_theme parameter. Impact per sourc...