EDB-4737
webappsphpVERIFIED
PHP Real Estate - 'fullnews.php?id' SQL Injection
CVE-2007-6462
t0pP8uZz12/14/2007
CVE-2007-6462
NONESQL injection vulnerability in fullnews.php in PHP Real Estate Classifieds allows remote attackers to execute arbitrary SQL commands via the id parameter.
Published: 12/20/2007Updated: 4/9/2025
Description
SQL injection vulnerability in fullnews.php in PHP Real Estate Classifieds allows remote attackers to execute arbitrary SQL commands via the id parameter.
AI AnalysisPowered by AI
Affected Products
php_real_estate_classifiedsphp_real_estate_classifieds_premium_plus
Available Exploits (1)
References
- http://phprealestatescript.com/PHPREC-121707-646PM-PATCH.zip
- http://secunia.com/advisories/28119
- http://www.securityfocus.com/bid/26888ExploitPatch
- https://www.exploit-db.com/exploits/4737
- http://phprealestatescript.com/PHPREC-121707-646PM-PATCH.zip
- http://secunia.com/advisories/28119
- http://www.securityfocus.com/bid/26888ExploitPatch
- https://www.exploit-db.com/exploits/4737