VYPR
Critical severity9.8NVD Advisory· Published Dec 16, 2017· Updated Jun 17, 2026

CVE-2017-17713

CVE-2017-17713

Description

Trape before 2017-11-05 has SQL injection via the /nr red parameter, the /nr vId parameter, the /register User-Agent HTTP header, the /register country parameter, the /register countryCode parameter, the /register cpu parameter, the /register isp parameter, the /register lat parameter, the /register lon parameter, the /register org parameter, the /register query parameter, the /register region parameter, the /register regionName parameter, the /register timezone parameter, the /register vId parameter, the /register zip parameter, or the /tping id parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • boxug/trape2 versions
    cpe:2.3:a:boxug:trape:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:boxug:trape:*:*:*:*:*:*:*:*range: <2017-11-05
    • (no CPE)range: <2017-11-05

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.