EDB-4737
webappsphpVERIFIED
PHP Real Estate - 'fullnews.php?id' SQL Injection
CVE-2007-6462
t0pP8uZz12/14/2007
CVE-2007-6462
NONESQL injection vulnerability in fullnews.php in PHP Real Estate Classifieds allows remote attackers to execute arbitrary SQL commands via the id parameter.
게시됨: 12/20/2007업데이트됨: 4/9/2025
설명
SQL injection vulnerability in fullnews.php in PHP Real Estate Classifieds allows remote attackers to execute arbitrary SQL commands via the id parameter.
AI 분석AI 기반
영향받는 제품
php_real_estate_classifiedsphp_real_estate_classifieds_premium_plus
사용 가능한 익스플로잇 (1)
참조
- http://phprealestatescript.com/PHPREC-121707-646PM-PATCH.zip
- http://secunia.com/advisories/28119
- http://www.securityfocus.com/bid/26888ExploitPatch
- https://www.exploit-db.com/exploits/4737
- http://phprealestatescript.com/PHPREC-121707-646PM-PATCH.zip
- http://secunia.com/advisories/28119
- http://www.securityfocus.com/bid/26888ExploitPatch
- https://www.exploit-db.com/exploits/4737