CVE-2006-6342

2006-12-07T01:28:00
ID CVE-2006-6342
Type cve
Reporter cve@mitre.org
Modified 2018-10-17T21:47:00

Description

Multiple SQL injection vulnerabilities in KLF-DESIGN (aka Kim L. Fraser) KLF-REALTY allow remote attackers to execute arbitrary SQL commands via the (1) category and (2) agent parameters in (a) search_listing.asp, and the (3) property_id parameter in (b) detail.asp.