CVE-2017-20131

Name of the Vulnerable Software and Affected Versions Itech News Portal version 6.28

Description A critical issue has been identified, affecting an unknown function of the file /news-portal-script/information.php. The manipulation of the inf argument leads to SQL injection, allowing for remote attacks. The exploit has been publicly disclosed and may be used.

Recommendations For Itech News Portal version 6.28, consider restricting access to the /news-portal-script/information.php file until a patch is available. As a temporary workaround, avoid using the inf argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.