CVE-2017-17595

Beauty Parlour Booking Script 1.0 has SQL Injection via the /list gender or city parameter.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:beauty_parlour_booking_script_project:beauty_parlour_booking_script:1.0:*:*:*:*:*:*:*

History

21 Nov 2024, 03:18

Type Values Removed Values Added
References () https://packetstormsecurity.com/files/145309/Beauty-Parlour-Booking-Script-1.0-SQL-Injection.html - Exploit, Third Party Advisory, VDB Entry () https://packetstormsecurity.com/files/145309/Beauty-Parlour-Booking-Script-1.0-SQL-Injection.html - Exploit, Third Party Advisory, VDB Entry
References () https://www.exploit-db.com/exploits/43267/ - Exploit, Third Party Advisory, VDB Entry () https://www.exploit-db.com/exploits/43267/ - Exploit, Third Party Advisory, VDB Entry

Information

Published : 2017-12-13 09:29

Updated : 2024-11-21 03:18


NVD link : CVE-2017-17595

Mitre link : CVE-2017-17595

CVE.ORG link : CVE-2017-17595


JSON object : View

Products Affected

beauty_parlour_booking_script_project

  • beauty_parlour_booking_script
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')