CVE-2017-15991
- EPSS 1.41%
- Veröffentlicht 31.10.2017 07:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
Vastal I-Tech Agent Zone (aka The Real Estate Script) allows SQL Injection in searchCommercial.php via the property_type, city, or posted_by parameter, or searchResidential.php via the property_type, city, or bedroom parameter, a different vulnerabil...
CVE-2012-0982
- EPSS 0.18%
- Veröffentlicht 02.02.2012 17:55:01
- Zuletzt bearbeitet 11.04.2025 00:51:21
SQL injection vulnerability in search.php in Vastal I-Tech Agent Zone (aka The Real Estate Script) allows remote attackers to execute arbitrary SQL commands via the price_from parameter.
CVE-2009-3497
- EPSS 0.37%
- Veröffentlicht 30.09.2009 15:30:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
SQL injection vulnerability in view_listing.php in Vastal I-Tech Agent Zone (aka The Real Estate Script) allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2008-3951
- EPSS 0.41%
- Veröffentlicht 11.09.2008 01:13:47
- Zuletzt bearbeitet 09.04.2025 00:30:58
SQL injection vulnerability in view_ann.php in Vastal I-Tech Agent Zone (aka The Real Estate Script) allows remote attackers to execute arbitrary SQL commands via the ann_id parameter.