4 matches found
Sql injection
SQL injection vulnerability in sitesearch.php in EasyRealtorPRO 2008 allows remote attackers to execute arbitrary SQL commands via the 1 item, 2 searchordermethod, and 3 searchorder parameters...
CVE-2008-4328
CVE-2008-4328 describes an SQL injection vulnerability in EasyRealtorPRO 2008 affecting site_search.php. The flaw allows remote attackers to inject arbitrary SQL through the input parameters (1) item, (2) search_ordermethod, and (3) search_order, leading to potentially unauthorized data access or...
SQL Injection in EasyRealtorPRO 2008
Original article: http://www.davidsopas.com/2008/09/sql-injection-in-easyrealtorpro/ "EasyRealtorPRO 2008 provides you with all features you need to setup your own business oriented real estate website on your own domain name. Our support team will install the script on your server and then you c...
easyrealtor-sql.txt
Original article: http://www.davidsopas.com/2008/09/sql-injection-in-easyrealtorpro/ "EasyRealtorPRO 2008 provides you with all features you need to setup your own business oriented real estate website on your own domain name. Our support team will install the script on your server and then you c...