EDB-4737
webappsphpVERIFIED
PHP Real Estate - 'fullnews.php?id' SQL Injection
CVE-2007-6462
t0pP8uZz12/14/2007
CVE-2007-6462
NONESQL injection vulnerability in fullnews.php in PHP Real Estate Classifieds allows remote attackers to execute arbitrary SQL commands via the id parameter.
Publicado: 12/20/2007Atualizado: 4/9/2025
Descrição
SQL injection vulnerability in fullnews.php in PHP Real Estate Classifieds allows remote attackers to execute arbitrary SQL commands via the id parameter.
Análise IADesenvolvido por IA
Produtos Afetados
php_real_estate_classifiedsphp_real_estate_classifieds_premium_plus
Exploits Disponíveis (1)
Referências
- http://phprealestatescript.com/PHPREC-121707-646PM-PATCH.zip
- http://secunia.com/advisories/28119
- http://www.securityfocus.com/bid/26888ExploitPatch
- https://www.exploit-db.com/exploits/4737
- http://phprealestatescript.com/PHPREC-121707-646PM-PATCH.zip
- http://secunia.com/advisories/28119
- http://www.securityfocus.com/bid/26888ExploitPatch
- https://www.exploit-db.com/exploits/4737