Vulnerability Details CVE-2017-17612
Hot Scripts Clone 3.1 has SQL Injection via the /categories subctid or mctid parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.038
EPSS Ranking 87.6%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- https://packetstormsecurity.com/files/145324/Hot-Scripts-Clone-3.1-SQL-Injection.html
- https://www.exploit-db.com/exploits/43284/
- https://www.exploit-db.com/exploits/43916/
- https://packetstormsecurity.com/files/145324/Hot-Scripts-Clone-3.1-SQL-Injection.html
- https://www.exploit-db.com/exploits/43284/
- https://www.exploit-db.com/exploits/43916/
Products affected by CVE-2017-17612
-
cpe:2.3:a:hot_scripts_clone_project:hot_scripts_clone:3.1