Critical severity9.8NVD Advisory· Published Dec 13, 2017· Updated Jun 17, 2026
CVE-2017-17624
CVE-2017-17624
Description
PHP Multivendor Ecommerce 1.0 has SQL Injection via the single_detail.php sid parameter, or the category.php searchcat or chid1 parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:php_multivendor_ecommerce_project:php_multivendor_ecommerce:1.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:php_multivendor_ecommerce_project:php_multivendor_ecommerce:1.0:*:*:*:*:*:*:*
- (no CPE)range: = 1.0
Patches
Vulnerability mechanics
References
2- packetstormsecurity.com/files/145336/PHP-Multivendor-Ecommerce-1.0-SQL-Injection.htmlnvdExploitThird Party AdvisoryVDB Entry
- www.exploit-db.com/exploits/43293/nvdExploitThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.