EDB-4737
webappsphpVERIFIED
PHP Real Estate - 'fullnews.php?id' SQL Injection
CVE-2007-6462
t0pP8uZz12/14/2007
CVE-2007-6462
NONESQL injection vulnerability in fullnews.php in PHP Real Estate Classifieds allows remote attackers to execute arbitrary SQL commands via the id parameter.
Опубликовано: 12/20/2007Обновлено: 4/9/2025
Описание
SQL injection vulnerability in fullnews.php in PHP Real Estate Classifieds allows remote attackers to execute arbitrary SQL commands via the id parameter.
ИИ-АнализНа базе ИИ
Затронутые продукты
php_real_estate_classifiedsphp_real_estate_classifieds_premium_plus
Доступные эксплойты (1)
Ссылки
- http://phprealestatescript.com/PHPREC-121707-646PM-PATCH.zip
- http://secunia.com/advisories/28119
- http://www.securityfocus.com/bid/26888ExploitPatch
- https://www.exploit-db.com/exploits/4737
- http://phprealestatescript.com/PHPREC-121707-646PM-PATCH.zip
- http://secunia.com/advisories/28119
- http://www.securityfocus.com/bid/26888ExploitPatch
- https://www.exploit-db.com/exploits/4737