Lucene search
K

9 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

Klf-Realty 2.0 search_listing.asp Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21199/info Klf-Realty is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.25 views

Klf-Realty 2.0 detail.asp property_id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21199/info Klf-Realty is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...

7.1AI score
Exploits0
NVD
NVD
added 2006/12/07 1:28 a.m.18 views

CVE-2006-6342

Multiple SQL injection vulnerabilities in KLF-DESIGN aka Kim L. Fraser KLF-REALTY allow remote attackers to execute arbitrary SQL commands via the 1 category and 2 agent parameters in a searchlisting.asp, and the 3 propertyid parameter in b detail.asp...

7.5CVSS8.5AI score0.01042EPSS
Exploits0References4
CVE
CVE
added 2006/12/07 1:0 a.m.40 views

CVE-2006-6342

CVE-2006-6342 affects KLF-DESIGN/KLF-REALTY. The flaw allows remote SQL injection via parameters (category, agent) in search_listing.asp and (property_id) in detail.asp, enabling arbitrary SQL execution as described in the NVD entry. No explicit remediation or affected version details are provide...

7.5CVSS8.9AI score0.01042EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2006/12/07 1:0 a.m.18 views

CVE-2006-6342

Multiple SQL injection vulnerabilities in KLF-DESIGN aka Kim L. Fraser KLF-REALTY allow remote attackers to execute arbitrary SQL commands via the 1 category and 2 agent parameters in a searchlisting.asp, and the 3 propertyid parameter in b detail.asp...

8.5AI score0.01042EPSS
Exploits0References4
securityvulns
securityvulns
added 2006/11/22 12:0 a.m.78 views

klf-realty [injection sql]

vendor site:http://klf-design.com/ product :klf-realty bug:injection sql risk : medium injection sql : /searchlisting.asp?category='sql /detail.asp?propertyid='sql /searchlisting.asp?agent='sql laurent gaffie & benjamin mosse http://s-a-p.ca/ contact: [email protected]...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2006/11/21 12:0 a.m.29 views

klfrealty.txt

vendor site:http://klf-design.com/ product :klf-realty bug:injection sql risk : medium injection sql : /searchlisting.asp?category='sql /detail.asp?propertyid='sql /searchlisting.asp?agent='sql laurent gaffie & benjamin mosse http://s-a-p.ca/ contact: [email protected]...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2006/11/20 12:0 a.m.13 views

Klf-Realty 2.0 - search_listing.asp Multiple SQL Injections

Klf-Realty 2.0 - searchlisting.asp Multiple SQL Injections source: https://www.securityfocus.com/bid/21199/info Klf-Realty is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2006/11/20 12:0 a.m.34 views

Klf-Realty 2.0 - 'search_listing.asp' Multiple SQL Injections

source: https://www.securityfocus.com/bid/21199/info Klf-Realty is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access or...

7.4AI score
Exploits0
Rows per page
Query Builder