CyberSec.Space Logo
CVEブラウザに戻る

CVE-2017-15988

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1330%
EPSS Percentile7.38th
Published2017年10月31日
Last Modified2026年5月13日

Vulnerability Description

Nice PHP FAQ Script allows SQL Injection via the index.php nice_theme parameter, a different vulnerability than CVE-2008-6525.

Affected Platforms (CPE)

📦
Nicephpscripts

Nice Php Faq Script

All versions

References & Advisories

🔗 https://www.exploit-db.com/exploits/43071/
🔗 https://www.exploit-db.com/exploits/43071/

関連する脆弱性情報

CVE-2008-65257.5

SQL injection vulnerability in the Admin Panel in Nice PHP FAQ Script (Knowledge base Script) allows remote attackers to execute a...

CVE-2017-1091810.0

Xen through 4.8.x does not validate memory allocations during certain P2M operations, which allows guest OS users to obtain privil...

CVE-2017-787610.0

This command injection vulnerability in QTS allows attackers to run arbitrary commands in the compromised application. QNAP have a...

CVE-2017-308810.0

Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the PDF runtime engine. S...