← Back to CVE List

CVE-2017-7997

Published: 2018-01-08T19:29Z
Last Modified: 2024-11-21T03:33Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
Multiple SQL injection vulnerabilities in Gespage before 7.4.9 allow remote attackers to execute arbitrary SQL commands via the (1) show_prn parameter to webapp/users/prnow.jsp or show_month parameter to (2) webapp/users/blhistory.jsp or (3) webapp/users/prhistory.jsp. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt