CVE-2018-5973

CVE: CVE-2018-5973
Published: 2018-01-25T17:29Z
Vendor: eihitech
Products: professional_local_directory_script
Versions: 1.0,
Description Language: en
Description: SQL Injection exists in Professional Local Directory Script 1.0 via the sellers_subcategories.php IndustryID parameter, or the suppliers.php IndustryID or CategoryID parameter.
References:
http://packetstormsecurity.com/files/146071/Professional-Local-Directory-Script-1.0-SQL-Injection.html
https://www.exploit-db.com/exploits/43870/