Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded 2006/12/07 1:28 a.m.11 views

CVE-2006-6342

Multiple SQL injection vulnerabilities in KLF-DESIGN aka Kim L. Fraser KLF-REALTY allow remote attackers to execute arbitrary SQL commands via the 1 category and 2 agent parameters in a searchlisting.asp, and the 3 propertyid parameter in b detail.asp...

7.5CVSS8.5AI score0.0101EPSS
Exploits0References4
CVE
CVEadded 2006/12/07 1:0 a.m.38 views

CVE-2006-6342

CVE-2006-6342 affects KLF-DESIGN/KLF-REALTY. The flaw allows remote SQL injection via parameters (category, agent) in search_listing.asp and (property_id) in detail.asp, enabling arbitrary SQL execution as described in the NVD entry. No explicit remediation or affected version details are provide...

7.5CVSS8.9AI score0.0101EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2006/12/07 1:0 a.m.12 views

CVE-2006-6342

Multiple SQL injection vulnerabilities in KLF-DESIGN aka Kim L. Fraser KLF-REALTY allow remote attackers to execute arbitrary SQL commands via the 1 category and 2 agent parameters in a searchlisting.asp, and the 3 propertyid parameter in b detail.asp...

8.5AI score0.0101EPSS
Exploits0References4
securityvulns
securityvulnsadded 2006/11/22 12:0 a.m.72 views

klf-realty [injection sql]

vendor site:http://klf-design.com/ product :klf-realty bug:injection sql risk : medium injection sql : /searchlisting.asp?category='sql /detail.asp?propertyid='sql /searchlisting.asp?agent='sql laurent gaffie & benjamin mosse http://s-a-p.ca/ contact: [email protected]...

0.5AI score
Exploits0
Packet Storm
Packet Stormadded 2006/11/21 12:0 a.m.27 views

klfrealty.txt

vendor site:http://klf-design.com/ product :klf-realty bug:injection sql risk : medium injection sql : /searchlisting.asp?category='sql /detail.asp?propertyid='sql /searchlisting.asp?agent='sql laurent gaffie & benjamin mosse http://s-a-p.ca/ contact: [email protected]...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2006/11/20 12:0 a.m.33 views

Klf-Realty 2.0 - 'search_listing.asp' Multiple SQL Injections

source: https://www.securityfocus.com/bid/21199/info Klf-Realty is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access or...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2006/11/20 12:0 a.m.12 views

Klf-Realty 2.0 - search_listing.asp Multiple SQL Injections

Klf-Realty 2.0 - searchlisting.asp Multiple SQL Injections source: https://www.securityfocus.com/bid/21199/info Klf-Realty is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could...

0.2AI score
Exploits0
Rows per page
Query Builder