CVE-2017-17612

Description

Hot Scripts Clone 3.1 has SQL Injection via the /categories subctid or mctid parameter.

Predictions

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

References

• https://packetstormsecurity.com/files/145324/Hot-Scripts-Clone-3.1-SQL-Injection.html
• https://www.exploit-db.com/exploits/43284/
• https://www.exploit-db.com/exploits/43916/
• https://packetstormsecurity.com/files/145324/Hot-Scripts-Clone-3.1-SQL-Injection.html
• https://www.exploit-db.com/exploits/43284/
• https://www.exploit-db.com/exploits/43916/

CWEs

CWE-89