CyberSec.Space Logo
CVEブラウザに戻る

CVE-2017-17625

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0250%
EPSS Percentile27.29th
Published2017年12月13日
Last Modified2026年5月13日

Vulnerability Description

Professional Service Script 1.0 has SQL Injection via the service-list city parameter.

Affected Platforms (CPE)

📦
On Demand Marketplace Script Project

On Demand Marketplace Script

= 1.0

References & Advisories

🔗 https://packetstormsecurity.com/files/145337/Professional-Service-Script-1.0-SQL-Injection.html
🔗 https://www.exploit-db.com/exploits/43294/
🔗 https://packetstormsecurity.com/files/145337/Professional-Service-Script-1.0-SQL-Injection.html
🔗 https://www.exploit-db.com/exploits/43294/

関連する脆弱性情報

CVE-2017-278810.0

A buffer overflows exists in the psnotifyd application of the Pharos PopUp printer client version 9.0. A specially crafted packet ...

CVE-2017-522610.0

When executing a program via the bubblewrap sandbox, the nonpriv session can escape to the parent session by using the TIOCSTI ioc...

CVE-2017-278510.0

An exploitable buffer overflow exists in the psnotifyd application of the Pharos PopUp printer client version 9.0. A specially cra...

CVE-2017-308810.0

Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the PDF runtime engine. S...