CVE-2008-5306
An SQL injection vulnerability exists in PG Real Estate Solution: admin/index.php accepts the login_lg (username) parameter in a way that allows remote attackers to execute arbitrary SQL commands. The issue is tied to the login handling code and carries a CVSS v2 base score of 7.5 (HIGH) with par...