{"id":"CVE-2017-20170","details":"A vulnerability was found in ollpu parontalli. It has been classified as critical. Affected is an unknown function of the file httpdocs/index.php. The manipulation of the argument s leads to sql injection. The patch is identified as 6891bb2dec57dca6daabc15a6d2808c8896620e5. It is recommended to apply a patch to fix this issue. VDB-218418 is the identifier assigned to this vulnerability.","modified":"2026-03-14T09:22:48.583102Z","published":"2023-01-17T14:15:10.613Z","references":[{"type":"ADVISORY","url":"https://vuldb.com/?id.218418"},{"type":"REPORT","url":"https://vuldb.com/?ctiid.218418"},{"type":"FIX","url":"https://github.com/ollpu/parontalli/commit/6891bb2dec57dca6daabc15a6d2808c8896620e5"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/ollpu/parontalli","events":[{"introduced":"0"},{"fixed":"6891bb2dec57dca6daabc15a6d2808c8896620e5"}]},{"type":"GIT","repo":"https://github.com/ollpu/parontalli","events":[{"introduced":"0"},{"fixed":"6891bb2dec57dca6daabc15a6d2808c8896620e5"}]}],"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"2017-01-21"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-20170.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}