EUVD-2012-1005

Malware in sbrugna...

CVE-2009-3497

SQL injection vulnerability in viewlisting.php in Vastal I-Tech Agent Zone aka The Real Estate Script allows remote attackers to execute arbitrary SQL commands via the id parameter...

Vastal I-Tech Agent Zone SQL Injection Vulnerability

Vastal I-Tech Agent Zone aka The Real Estate Script is a real estate website management system. A SQL injection vulnerability exists in Vastal I-Tech Agent Zone aka The Real Estate Script. A remote attacker can exploit this vulnerability to inject SQL commands...

CVE-2017-15991

Vastal I-Tech Agent Zone aka The Real Estate Script allows SQL Injection in searchCommercial.php via the propertytype, city, or postedby parameter, or searchResidential.php via the propertytype, city, or bedroom parameter, a different vulnerability than CVE-2008-3951, CVE-2009-3497, and...

Sql injection

Vastal I-Tech Agent Zone aka The Real Estate Script allows SQL Injection in searchCommercial.php via the propertytype, city, or postedby parameter, or searchResidential.php via the propertytype, city, or bedroom parameter, a different vulnerability than CVE-2008-3951, CVE-2009-3497, and...

CVE-2017-15991

Vastal I-Tech Agent Zone (aka The Real Estate Script) contains a SQL injection vulnerability affecting searchCommercial.php (parameters: property_type, city, posted_by) and searchResidential.php (parameters: property_type, city, bedroom). The issue arises from unsanitized input being interpolated...

CVE-2017-15991

Vastal I-Tech Agent Zone aka The Real Estate Script allows SQL Injection in searchCommercial.php via the propertytype, city, or postedby parameter, or searchResidential.php via the propertytype, city, or bedroom parameter, a different vulnerability than CVE-2008-3951, CVE-2009-3497, and...

Vastal I-Tech Agent Zone - 'searchCommercial.php' / 'searchResidential.php' SQL Injection

Exploit Title: Vastal I-Tech Agent Zone - SQL Injection Dork: N/A Date: 30.10.2017 Vendor Homepage: http://vastal.com/ Software http://vastal.com/agent-zone-real-estate-script.html Demo: http://agentzone.vastal.com/demo/ Version: N/A Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE:...

Vastal I-Tech Agent Zone - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Vastal I-Tech Agent Zone - SQL Injection Dork: N/A Date: 30.10.2017 Vendor Homepage: http://vastal.com/ Software http://vastal.com/agent-zone-real-estate-script.html Demo: http://agentzone.vastal.com/demo/ Version: N/A Category:...

Vastal I-Tech Agent Zone SQL Injection

Exploit Title: Vastal I-Tech Agent Zone - SQL Injection Dork: N/A Date: 30.10.2017 Vendor Homepage: http://vastal.com/ Software http://vastal.com/agent-zone-real-estate-script.html Demo: http://agentzone.vastal.com/demo/ Version: N/A Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE:...

Vastal I-Tech Agent Zone (search.php) Blind SQL Injection Vulnerability

No description provided by source. Agent Zone Vastal I-Tech Blind SQL Injection Vulnerability Date: 31.01.2012 Author: Cagri Tepebasili Software : http://www.vastal.com/agent-zone-real-estate-script.html Tested on: Linux Mint 12 The First Step...

Vastal I-Tech Agent Zone SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/36503/info Agent Zone is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise th...

CVE-2012-0982

SQL injection vulnerability in search.php in Vastal I-Tech Agent Zone aka The Real Estate Script allows remote attackers to execute arbitrary SQL commands via the pricefrom parameter...

Sql injection

SQL injection vulnerability in search.php in Vastal I-Tech Agent Zone aka The Real Estate Script allows remote attackers to execute arbitrary SQL commands via the pricefrom parameter...

CVE-2012-0982

SQL injection vulnerability in search.php in Vastal I-Tech Agent Zone aka The Real Estate Script allows remote attackers to execute arbitrary SQL commands via the pricefrom parameter...

CVE-2012-0982

CVE-2012-0982 describes an SQL injection vulnerability in Vastal I-Tech Agent Zone (aka The Real Estate Script). The issue exists in search.php and allows remote attackers to execute arbitrary SQL commands through the price_from parameter. The description explicitly notes remote exploitation with...

Vastal I-Tech Agent Zone - 'search.php' Blind SQL Injection

Agent Zone Vastal I-Tech Blind SQL Injection Vulnerability Date: 31.01.2012 Author: Cagri Tepebasili Software : http://www.vastal.com/agent-zone-real-estate-script.html Tested on: Linux Mint 12 The First Step http://server/real/search.php?pricefrom=1000000.00+and+1=1&priceto=10000000.00 The Secon...

Vastal I-Tech Agent Zone - search.php Blind SQL Injection

Vastal I-Tech Agent Zone - search.php Blind SQL Injection Agent Zone Vastal I-Tech Blind SQL Injection Vulnerability Date: 31.01.2012 Author: Cagri Tepebasili Software : http://www.vastal.com/agent-zone-real-estate-script.html Tested on: Linux Mint 12 The First Step...

Vastal I-Tech Agent Zone (search.php) Blind SQL Injection Vulnerability

Exploit for php platform in category web applications Agent Zone Vastal I-Tech Blind SQL Injection Vulnerability Date: 31.01.2012 Author: Cagri Tepebasili Software : http://www.vastal.com/agent-zone-real-estate-script.html Tested on: Linux Mint 12 The First Step...

Agent Zone Vastal I-Tech Real Estate SQL Injection

Agent Zone Vastal I-Tech Blind SQL Injection Vulnerability Date: 31.01.2012 Author: Cagri Tepebasili Software : http://www.vastal.com/agent-zone-real-estate-script.html Tested on: Linux Mint 12 The First Step http://www.vastal.com/real/search.php?pricefrom=1000000.00+and+1=1&priceto=10000000.00 T...