3 matches found
CVE-2005-4018
SQL injection vulnerability in ls.php in Landshop Real Estate Commerce System 0.6.3 and earlier allows remote attackers to execute arbitrary SQL commands via the 1 start, 2 searchorder, 3 searchtype, 4 searcharea, and 5 keyword parameters...
CVE-2005-4018
SQL injection vulnerability in ls.php in Landshop Real Estate Commerce System 0.6.3 and earlier allows remote attackers to execute arbitrary SQL commands via the 1 start, 2 searchorder, 3 searchtype, 4 searcharea, and 5 keyword parameters...
CVE-2005-4018
The connected records confirm a SQL injection vulnerability in LandShop Real Estate Commerce System 0.6.3 and earlier via ls.php, exploitable through parameters (start, search_order, search_type, search_area, keyword). The root cause is likely unsanitized user input incorporated into SQL queries,...