Critical severity9.8NVD Advisory· Published Jun 12, 2018· Updated Jun 17, 2026
CVE-2017-18290
CVE-2017-18290
Description
An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the GET sort_direction parameter.
Affected products
2- Range: <=2.4.6
Patches
Vulnerability mechanics
References
1- rchase.com/blog/posts/pvpgn-stats-multiple-sql-injection-vulnerabilities/nvdExploitIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.