Skip to main content

Advanced World Database

1 CVEs product

Monthly

CVE-2017-17640 CRITICAL POC Act Now

Advanced World Database 2.0.5 has SQL Injection via the city.php country or state parameter, or the state.php country parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Advanced World Database
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
2.5%
EPSS 3% CVSS 9.8
CRITICAL POC Act Now

Advanced World Database 2.0.5 has SQL Injection via the city.php country or state parameter, or the state.php country parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Advanced World Database
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy