Critical severity9.8NVD Advisory· Published Nov 20, 2017· Updated May 13, 2026
CVE-2017-16896
CVE-2017-16896
Description
A SQL injection in classes/handler/public.php in the forgotpass component of Tiny Tiny RSS 17.4 exists via the login parameter.
Affected products
1- cpe:2.3:a:tt-rss:tiny_tiny_rss:17.4:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2News mentions
0No linked articles in our index yet.