2 matches found
CVE-2006-5914
SQL injection vulnerability in ls.php in SAMEDIA LandShop allows remote attackers to execute arbitrary SQL commands via the infield parameter. NOTE: the start, searchorder, searchtype, and searcharea parameters are already covered by CVE-2005-4018...
CVE-2006-5914
The CVE-2006-5914 entry describes an SQL injection in ls.php of SAMEDIA LandShop (Landshop Real Estate Commerce System) that lets remote attackers execute arbitrary SQL via the infield parameter. The note indicates that related parameters (start, search_order, search_type, search_area) are alread...