SQL Injection via PATH_INFO in Adult Script Pro 2.2.4

SQL Injection via PATH_INFO in Adult Script Pro 2.2.4

CVE-2017-15959 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Adult Script Pro 2.2.4 allows SQL Injection via the PATH_INFO to a /download URI, a different vulnerability than CVE-2007-6576.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.