CVE-2017-17625

Professional Service Script 1.0 has SQL Injection via the service-list city parameter.