VYPR
Unrated severityNVD Advisory· Published Jul 16, 2022· Updated Apr 15, 2025

Itech B2B Script catcompany.php sql injection

CVE-2017-20137

Description

A vulnerability was found in Itech B2B Script 4.28. It has been rated as critical. This issue affects some unknown processing of the file /catcompany.php. The manipulation of the argument token with the input 704667c6a1e7ce56d3d6fa748ab6d9af3fd7' AND 6539=6539 AND 'Fakj'='Fakj leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Itech/B2b Scriptllm-fuzzy2 versions
    = 4.28+ 1 more
    • (no CPE)range: = 4.28
    • (no CPE)range: 4.28

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.