cpe:/a:multivendor_penny_auction_clone_script_project:multivendor_penny_auction_clone_script:1.0 CVE-2017-17621 2017-12-13T04:29:02.387-05:00 2017-12-26T11:31:01.027-05:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2017-12-25T09:21:41.010-05:00 EXPLOIT-DB 43290 MISC https://packetstormsecurity.com/files/145331/Multivendor-Penny-Auction-Clone-Script-1.0-SQL-Injection.html MISC https://packetstormsecurity.com/files/145333/Multivendor-Penny-Auction-Clone-Script-1.0-SQL-Injection.html Multivendor Penny Auction Clone Script 1.0 has SQL Injection via the PATH_INFO to the /detail URI.