Vulnerabilities > Vanguard Project > Critical

DATE CVE VULNERABILITY TITLE RISK
2017-12-27 CVE-2017-17873 SQL Injection vulnerability in Vanguard Project Marketplace Digital products PHP 1.4.0
Vanguard Marketplace Digital Products PHP 1.4 has SQL Injection via the PATH_INFO to the /p URI.
network
low complexity
vanguard-project CWE-89
critical
 9.8
9.8