CVE-2017-20170

Name of the Vulnerable Software and Affected Versions ollpu parontalli (affected versions not specified)

Description A critical issue has been found, affecting an unknown function of the file httpdocs/index.php. The manipulation of the s argument leads to sql injection.

Recommendations Apply a patch to fix this issue. The patch is identified as 6891bb2dec57dca6daabc15a6d2808c8896620e5. As a temporary workaround, consider restricting access to the httpdocs/index.php file until a patch is available. Avoid using the s argument in the affected function until the issue is resolved.