exploitDog

GHSA-cwx3-9c5v-p3h3

Опубликовано: 02 мая 2022

Источник: github

Github: Не прошло ревью

Описание

SQL injection vulnerability in site_search.php in EasyRealtorPRO 2008 allows remote attackers to execute arbitrary SQL commands via the (1) item, (2) search_ordermethod, and (3) search_order parameters.

SQL injection vulnerability in site_search.php in EasyRealtorPRO 2008 allows remote attackers to execute arbitrary SQL commands via the (1) item, (2) search_ordermethod, and (3) search_order parameters.

Ссылки

EPSS

Процентиль: 58%

0.00372

Низкий

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2008-4328

nvd

больше 17 лет назад

SQL injection vulnerability in site_search.php in EasyRealtorPRO 2008 allows remote attackers to execute arbitrary SQL commands via the (1) item, (2) search_ordermethod, and (3) search_order parameters.

EPSS

Процентиль: 58%

0.00372

Низкий

CVE ID

Дефекты

CWE-89