CVE-2017-12757

CRITICAL

Ambit Technologies iTech Scripts - SQL Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-12757. PoCs published by Ihsan Sencan.

AI-analyzed exploit summary This exploit demonstrates SQL injection vulnerabilities in iTech Caregiver Script 2.71. It provides multiple endpoints and payloads to inject SQL commands, potentially leading to information disclosure or further exploitation.

Description

Certain Ambit Technologies Pvt. Ltd products are affected by: SQL Injection. This affects iTech B2B Script 4.42i and Tech Business Networking Script 8.26i and Tech Caregiver Script 2.71i and Tech Classifieds Script 7.41i and Tech Dating Script 3.40i and Tech Freelancer Script 5.27i and Tech Image Sharing Script 4.13i and Tech Job Script 9.27i and Tech Movie Script 7.51i and Tech Multi Vendor Script 6.63i and Tech Social Networking Script 3.08i and Tech Travel Script 9.49. The impact is: Code execution (remote).

Exploits (1)

exploitdb WORKING POC
by Ihsan Sencan · textwebappsphp
https://www.exploit-db.com/exploits/42507

This exploit demonstrates SQL injection vulnerabilities in iTech Caregiver Script 2.71. It provides multiple endpoints and payloads to inject SQL commands, potentially leading to information disclosure or further exploitation.

Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: iTech Caregiver Script 2.71
No auth needed
Prerequisites: Access to the vulnerable web application
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Not Applicable x_refsource_misc
http://ambit.com
Product x_refsource_misc
http://itech.com
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
https://www.exploit-db.com/exploits/42507

Scores

CVSS v3 9.8
EPSS 0.0361
EPSS Percentile 88.0%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-89
Status published
Products (12)
ambittechnologies/itech_b2b_script 4.42i
ambittechnologies/itech_business_networking_script 8.26i
ambittechnologies/itech_caregiver_script 2.71i
ambittechnologies/itech_classifieds_script 7.41i
ambittechnologies/itech_dating_script 3.40i
ambittechnologies/itech_freelancer_script 5.27i
ambittechnologies/itech_image_sharing_script 4.13i
ambittechnologies/itech_job_script 9.27i
ambittechnologies/itech_movie_script 7.51i
ambittechnologies/itech_multi_vendor_script 6.63i
... and 2 more
Published May 09, 2019
Tracked Since Feb 18, 2026