CVE-2017-18291

CVE-2017-18291

EPSS 1.0%

An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the GET user parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://rchase.com/blog/posts/pvpgn-stats-multiple-sql-injection-vulnerabilities/